<DIV id=RTEContent> <TABLE cellSpacing=0 cellPadding=2 width="96%" border=0> <TBODY> <TR> <TD class=z03 width="80%"> <TABLE cellSpacing=0 cellPadding=0 width="100%" border=0> <TBODY> <TR> <TD vAlign=top height=200><!--SOHUMAIL_HTML_HEAD_END-->Hi,I ran into a problem when I use SRP telnetd and telnet: <div> <div>Trying 127.0.0.1... <div>Connected to GATE (127.0.0.1). <div>Escape character is '^]'. <div>[ Negotiating SSL/TLS session ... ] <div>[ Cipher: ADH-AES256-SHA (256 bits) ] <div>[ Attempting to verify TLS session parameters... ] <div>[ Trying SRP ... ] <div>SRP Username (root): root <div>[ SRP refuses authentication for 'root' (Password not set) ] <div>WARNING: unable to verify TLS session parameters. Continue? (Y/N) y <div>telnetd: Authorization failed. <div>Connection closed by foreign host. <div> <div>My configuration: <div>1. OS <div>centos 4.2 <div>2. installation steps <div>1) ./configure --prefix=/usr/local/srp
--with-openssl=/root/kernel/openssl-0.9.8a --with-pam <div>2) make <div>3) make install <div>4) cp /usr/local/srp/sbin/eps_chkpwd /sbin/ <div>5) cp /usr/local/srp/bin/passwd /usr/bin/ <div>6) cp /usr/local/srp/bin/login /bin/ <div>7) cp /usr/local/srp/bin/su /bin/ <div>8) cp base/pam_eps/pam_eps_*.so /lib/security/ <div>9) added the fllowing two lines to some files in /etc/pam/d: login, su, passwd, telnet(made by myself) and system-auth <div>auth required /lib/security/pam_eps_auth.so <div>passwd required /lib/security/pam_eps_passwd.so <div> <div>/etc/pam.d/telete <div>auth required pam_stack.so service=system-auth <div>auth required /lib/security/pam_eps_auth.so <div>account required pam_stack.so service=system-auth <div>passwd required /lib/security/pam_unix.so nullok use_authtok md5 shadow <div>passwd required /lib/security/pam_eps_passwd.so <div>session required pam_stack.so service=system-auth <div> <div> <div>10) run the tconf a!
nd
generated the key <div>11) remade the root password and one other and confirmed that they updated shadow, passwd and tpasswd <div>12) made a new file --- /etc/xinetd.d/telnet <div># description: The SRP Telnet server <div>#serves Telnet connections. <div># It uses SRP for authentication. <div>service telnet <div>{ <div>disable = no <div>bind = 127.0.0.1 <div>socket_type = stream <div>wait = no <div>user = root <div>server = /usr/local/srp/sbin/telnetd <div>server_args = -a valid <div>log_on_success += DURATION USERID <div>log_on_failure += USERID <div>nice = 10 <div>} <div> <div>What's wrong is this? All contributions gratefully received.</div></TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE></DIV><p>
<hr size=1><a href="http://cn.mail.yahoo.com" target=blank>
ÑÅ»¢Ãâ·ÑGÓÊÏä£ÖйúµÚÒ»¾øÎÞÀ¬»øÓʼþɧÈų¬´óÓÊÏä</a><br>
<a href="http://cn.zs.yahoo.com" target=blank>ÑÅ»¢ÖúÊÖ¡§DËÑË÷¡¢É±¶¾¡¢·ÀɧÈÅ</a>