[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

ssh, passwd, and PAM



Hi,

	I just upgraded my Red Hat systems from 3.0.3 to 5.1, and I've
upgraded ssh from a (non-rpm) 1.2.22 to the 1.2.23 rpm from
ftp.replay.com, that uses both PAM and tcp_wrappers.  I managed to get
ssh working again between my local Red Hat box and a SPARC running
Solaris 2.5.1, but then I decided to change my password on the Solaris
machine (since I'd been using rlogin until I got ssh running again.)
Now when I try to ssh from the solaris machine to the Red Hat machine
I get this:

What I see in the shell on the solaris_box
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~ 209% ssh -v linux_box
SSH Version 1.2.22 [sparc-sun-solaris2.5.1], protocol version 1.5.
Standard version.  Does not use RSAREF.
solaris_box: Reading configuration data /etc/ssh_config
solaris_box: ssh_connect: getuid 87 geteuid 0 anon 0
solaris_box: Connecting to linux_box [123.456.78.9] port 22.
solaris_box: Allocated local port 1020.
solaris_box: connect: Connection refused
solaris_box: Trying again...
solaris_box: Connecting to linux_box [123.456.78.9] port 22.
solaris_box: Allocated local port 1020.
solaris_box: connect: Connection refused
solaris_box: Trying again...
solaris_box: Connecting to linux_box [123.456.78.9] port 22.
solaris_box: Allocated local port 1020.
solaris_box: connect: Connection refused
solaris_box: Trying again...
solaris_box: Connecting to linux_box [123.456.78.9] port 22.
solaris_box: Allocated local port 1020.
solaris_box: connect: Connection refused
Secure connection to linux_box refused; reverting to insecure method.
Using rsh.  WARNING: Connection will not be encrypted.
/usr/bin/remsh linux_box -l reid

What I see on linux_box's console log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Jun 10 01:16:29 linux_box PAM_pwdb[3704]: auth could not identify password for [reid]
Jun 10 01:16:29 linux_box login[3704]: FAILED LOGIN SESSION FROM solaris_box FOR reid, Conversation error
Jun 10 01:16:29 linux_box PAM_pwdb[3703]: 1 authentication failure; (uid=0) -> reid for rlogin service

Changing the (shadowed) password back to the original one didn't help,
and from the log I don't think it's a tcp_wrapper or ssh problem.  I
can still ssh from linux_box to solaris_box, and the ssh identities haven't
changed.

Has anyone else had problems with remote logins after changing their
password?  Any tips?

	Thanks in advance.

-- 
This taught me a lesson, but I'm not quite sure what it is. - John MacEnroe
Robert I. Reid <reid@astro.utoronto.ca>     http://astro.utoronto.ca/~reid/
PGP Key: http://astro.utoronto.ca/~reid/pgp.html



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []