[I am new here. I tried searching before starting a new thread].
I need help troubleshooting a password-based sftp login. I'll list the messages I got from the verbose option. I entered my password when prompted but it was denied. If the password is assumed to be valid (unless that can be ruled out from the logging messages) can we pin the problem down to being on my end or that of my destination? Since this is not key-based sftp I have not exchanged any keys with the other party.
Thanks, in advance, for any help that can be provided.
----------------------------------------
$ sftp -v -oPort=10022 my_account@sftp.section111.cms.hhs.gov
Connecting to sftp.section111.cms.hhs.gov...
OpenSSH_4.5p1_q1.116, OpenSSL 0.9.8d 28 Sep 2006
debug1: Reading configuration data /etc/opt/quest/ssh/ssh_config
debug1: Connecting to sftp.section111.cms.hhs.gov [204.76.173.42] port 10022.
debug1: Connection established.
debug1: identity file /home/gsdev/.ssh/id_rsa type 1
debug1: identity file /home/gsdev/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version http://3sp.com_Maverick_SSHD
debug1: no match: http://3sp.com_Maverick_SSHD
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug1: Miscellaneous failure (see text)
open(/tmp/krb5cc_7018): No such file or directory
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: sending SSH2_MSG_KEXDH_INIT
debug1: expecting SSH2_MSG_KEXDH_REPLY
debug1: Host '[sftp.section111.cms.hhs.gov]:10022' is known and matches the DSA host key.
debug1: Found key in /home/gsdev/.ssh/known_hosts:27
debug1: ssh_dss_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
GIS SSH Server supporting SFTP and SCP
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Offering public key: /home/gsdev/.ssh/id_rsa
debug1: Authentications that can continue: publickey,password
debug1: Offering public key: /home/gsdev/.ssh/id_dsa
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: password
my_account@sftp.section111.cms.hhs.gov's password:
debug1: Authentications that can continue: publickey,password
Permission denied, please try again.
my_account@sftp.section111.cms.hhs.gov's password:
<at this point I escaped out>
$

Are you able to login in using ssh?

Thanks for taking the time to consider my problem.

(1) I tried to login using ssh from the UNIX box from which my eventual (?) sftp connection will be made; the attempt timed out.

(2) But, as background, I can log in using this account & password to the outside party's website. Their documentation says that the same account they provided to us for accessing their website would also work for the sftp to their platform.

OK, that means that something is set up incorrectly on the Unix box. Do you manage this box i.e. have you root access to it?

The SSH server may have been built with TCP wrappers enabled. Use ldd to see if the executable contains the libwrap library. If so, check the contents /etc/hosts.allow and /etc/hosts.deny files. (man tcpd for more information)

Thanks for the suggestion. I don't have root but I will run your idea past the folk(s) that run that UNIX box.