Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: SSH prompts password for non identical users
Top Forums UNIX for Advanced & Expert Users SSH prompts password for non identical users Post 302201270 by ramen_noodle on Sunday 1st of June 2008 04:45:16 PM
Old 06-01-2008
sshd is generally pretty verbal about key exchange issues and can be made more so(-d). Check /var/log/messages or wherever you are logging sshd to or run in the the fg with -D. ssh -v{3} is your friend.

I've seen a similar problem where the key permissions were too open. OpenSSH may not like world readable permissions for your private key.
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

scripting password prompts

Hi there Probably a really simple question but I am writing an install script and at certain stages of the install (ie creating a table in mysql) the system prompts for you to enter a password, I was wondering, how do I script this input so that the install doesnt keep stopping for manual... (3 Replies)
Discussion started by: hcclnoodles
3 Replies

2. UNIX for Advanced & Expert Users

password prompts

I would like to log all the commands that are entered on an ssh client. I can do this successfully, however, I dont want to log user logins and passwords. Is there any way to identify passwords and avoid them? For example, I can look for a string 'password:' and ignore everything until a nl/cr. Is... (2 Replies)
Discussion started by: balag
2 Replies

3. UNIX for Dummies Questions & Answers

Have users changed their password

How can I know users have changed their passwords ? I don't need their password (!) I have to know if they have changed their pass word and when ? Thank you in advance for any SIMPLE answer. (6 Replies)
Discussion started by: annemar
6 Replies

4. Solaris

SSH Password-less login fails on password expiry.

Hi Gurus I have a few Sol 5.9 servers and i have enabled password less authentication between them for my user ID. Often i have found that when my password has expired,the login fails. Resetting my password reenables the keys. Do i need to do something to avoid this scenario or is this... (2 Replies)
Discussion started by: Renjesh
2 Replies

5. Red Hat

SSH Prompts for Password After Keys Setup Successfully

I setup the keys between 2 servers, but my user account has no password specified for it (never set one up on the account for security reasons). When I try to SSH to the server, SSH prompts for a password that doesn't exist (so I can never connect successfully). Note: 'passwd -d Rynok' removes... (3 Replies)
Discussion started by: Rynok
3 Replies

6. UNIX Desktop Questions & Answers

Too many users with root password

Hi there, I'm working with a Linux server and now I can get a daily Logwatch mail ... my question is:since there are too many users with root password (...in my opinion... :mad:) how could I prevent to delete information about "su" log? Thanks in advance, GB (3 Replies)
Discussion started by: Giordano Bruno
3 Replies

7. AIX

Users kicked out after changing their password in an ssh session

Hi I have experienced this for years and just put up with it. However a client of mine now wants to stop this happening to their users. I have scoured the internet but can find no reference to the problem. I tried switching to PAM authentication thinking this might help but it made no... (6 Replies)
Discussion started by: johnf
6 Replies

8. Shell Programming and Scripting

ssh foo.com sudo command - Prompts for sudo password as visible text. Help?

I am writing a BASH script to update a webserver and then restart Apache. It looks basically like this: #!/bin/bash rsync /path/on/local/machine/ foo.com:path/on/remote/machine/ ssh foo.com sudo /etc/init.d/apache2 reloadrsync and ssh don't prompt for a password, because I have DSA encryption... (9 Replies)
Discussion started by: fluoborate
9 Replies

9. Shell Programming and Scripting

how to run a command line with another user without prompts for password

Hi, I'm writing a script, in the script I need to use tcpdump to capture some packets however it needs root priviledge my computer is configured by school and I have no real root priviledge so I can't use sudo on my computer,like Code: sudo tcpdump ...... I have to use a limited... (1 Reply)
Discussion started by: esolve
1 Replies

10. Red Hat

SSH password less setup asking for password

Hello Experts, when I am trying to connect my target server through sftp after creating ssh password less setup, it is asking for passowrd to connect. to setup this I followed below process: -->generated keys by executing the command "ssh-keygen -t rsa" -->this created my .ssh directory... (9 Replies)
Discussion started by: Devipriya Ch
9 Replies

LEARN ABOUT CENTOS

moduli

MODULI(5)						      BSD File Formats Manual							 MODULI(5)

NAME

     moduli -- Diffie-Hellman moduli

DESCRIPTION

     The /etc/ssh/moduli file contains prime numbers and generators for use by sshd(8) in the Diffie-Hellman Group Exchange key exchange method.

     New moduli may be generated with ssh-keygen(1) using a two-step process.  An initial candidate generation pass, using ssh-keygen -G, calcu-
     lates numbers that are likely to be useful.  A second primality testing pass, using ssh-keygen -T, provides a high degree of assurance that
     the numbers are prime and are safe for use in Diffie-Hellman operations by sshd(8).  This moduli format is used as the output from each pass.

     The file consists of newline-separated records, one per modulus, containing seven space-separated fields.	These fields are as follows:

	   timestamp	The time that the modulus was last processed as YYYYMMDDHHMMSS.

	   type 	Decimal number specifying the internal structure of the prime modulus.	Supported types are:

			0     Unknown, not tested.
			2     "Safe" prime; (p-1)/2 is also prime.
			4     Sophie Germain; 2p+1 is also prime.

			Moduli candidates initially produced by ssh-keygen(1) are Sophie Germain primes (type 4).  Further primality testing with
			ssh-keygen(1) produces safe prime moduli (type 2) that are ready for use in sshd(8).  Other types are not used by OpenSSH.

	   tests	Decimal number indicating the type of primality tests that the number has been subjected to represented as a bitmask of
			the following values:

			0x00  Not tested.
			0x01  Composite number - not prime.
			0x02  Sieve of Eratosthenes.
			0x04  Probabilistic Miller-Rabin primality tests.

			The ssh-keygen(1) moduli candidate generation uses the Sieve of Eratosthenes (flag 0x02).  Subsequent ssh-keygen(1) pri-
			mality tests are Miller-Rabin tests (flag 0x04).

	   trials	Decimal number indicating the number of primality trials that have been performed on the modulus.

	   size 	Decimal number indicating the size of the prime in bits.

	   generator	The recommended generator for use with this modulus (hexadecimal).

	   modulus	The modulus itself in hexadecimal.

     When performing Diffie-Hellman Group Exchange, sshd(8) first estimates the size of the modulus required to produce enough Diffie-Hellman out-
     put to sufficiently key the selected symmetric cipher.  sshd(8) then randomly selects a modulus from /etc/ssh/moduli that best meets the size
     requirement.

SEE ALSO

     ssh-keygen(1), sshd(8)

STANDARDS

     M. Friedl, N. Provos, and W. Simpson, Diffie-Hellman Group Exchange for the Secure Shell (SSH) Transport Layer Protocol, RFC 4419, March 2006
     2006.

BSD
								September 26, 2012							       BSD
All times are GMT -4. The time now is 01:46 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy