|
|
Sponsored Content
Top Forums
UNIX for Dummies Questions & Answers
Can't SSH as root anymore!
Post 302371174 by cquarry on Friday 13th of November 2009 02:19:42 PM
11-13-2009
It says (some info edited out):
Note, this is two auth attempts: one with root, and one with the admin account I have set up under "allowUsers"
I've tried removing the allowed users line and I get different errors. Let me grab those quickly unless you lot have any awesome ideas. 
---------- Post updated at 02:19 PM ---------- Previous update was at 02:13 PM ----------
Removing allowed users worked this time. Never mind, everybody. Thanks...
Note, this is two auth attempts: one with root, and one with the admin account I have set up under "allowUsers"
Quote:
Nov 13 17:15:16 EDITED sshd[14220]: User root from EDITED. net not allowed because not listed in AllowUsers
Nov 13 17:15:16 EDITED sshd[14220]: Failed none for invalid user root from IP EDITED port 62450 ssh2
Nov 13 17:15:17 Sustainable sshd[14220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=EDITED user=root
Nov 13 17:15:19 EDITED sshd[14220]: Failed password for invalid user root from IP EDITED port 62450 ssh2
Nov 13 17:16:27 EDITED sshd[14220]: Failed password for invalid user root from IP EDITED port 62450 ssh2
Nov 13 17:16:29 EDITED sshd[14220]: PAM 1 more authentication failure; logname= uid=0 euid=0 tty=ssh ruser= EDITED user=root
Nov 13 17:19:13 EDITED sshd[14229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=EDITED us
er=ACCOUNT NAME EDITED
Nov 13 17:19:13 EDITED sshd[14229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=EDITED user=ACCOUNT NAME EDITED
Nov 13 17:19:15 EDITED sshd[14229]: Failed password for ACCOUNT NAME EDITED from EDITED port 62483 ssh2
Nov 13 17:15:16 EDITED sshd[14220]: Failed none for invalid user root from IP EDITED port 62450 ssh2
Nov 13 17:15:17 Sustainable sshd[14220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=EDITED user=root
Nov 13 17:15:19 EDITED sshd[14220]: Failed password for invalid user root from IP EDITED port 62450 ssh2
Nov 13 17:16:27 EDITED sshd[14220]: Failed password for invalid user root from IP EDITED port 62450 ssh2
Nov 13 17:16:29 EDITED sshd[14220]: PAM 1 more authentication failure; logname= uid=0 euid=0 tty=ssh ruser= EDITED user=root
Nov 13 17:19:13 EDITED sshd[14229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=EDITED us
er=ACCOUNT NAME EDITED
Nov 13 17:19:13 EDITED sshd[14229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=EDITED user=ACCOUNT NAME EDITED
Nov 13 17:19:15 EDITED sshd[14229]: Failed password for ACCOUNT NAME EDITED from EDITED port 62483 ssh2
---------- Post updated at 02:19 PM ---------- Previous update was at 02:13 PM ----------
Removing allowed users worked this time. Never mind, everybody.
Thanks...|
|
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
using redhat 7.2
Is it possible to not allow root to ssh into the server remotely, but allow the account that ssh'd in to the box to su to root? This way there is the added security of a hacker needing two passwords to hack your computer, a username/password for a regular account and also the... (3 Replies)
Discussion started by: theDirtiest
3 Replies
2. AIX
Hello,
I would like to issue a couple of commands as root on a remote machine without having to enter the root password. I used "ssh-keygen -t rsa" to generate the encryption keys, copied the public key to the remote machine, etc.
I also tried playing around with the sshd_config file and... (3 Replies)
Discussion started by: sphericon
3 Replies
3. Solaris
I edited my /etc/default/login file and commented the line:
# If CONSOLE is set, root can only login on that device.
# Comment this line out to allow remote login by root.
#
#CONSOLE=/dev/console
I still cant login thru telnet or ssh.
What else do i have to do to be able to login... (14 Replies)
Discussion started by: BG_JrAdmin
14 Replies
4. Cybersecurity
Hi all,
I have a situation where I have a shell script that I need to run remotely on multiple *nix machines via SSH. Unfortunately, some of the commands in it require root access. I know that best practices for ssh entail configuring it so that the root account cannot log in, you need to... (4 Replies)
Discussion started by: irinotecan
4 Replies
5. Solaris
Hi Friends,
I would like to configure ssh for root user.
Note : I am able to use the ssh for other user.
Can someone suggest me what needs to be done....???
Thanks & Regards,
jumadhiya. (8 Replies)
Discussion started by: jumadhiya
8 Replies
6. UNIX for Dummies Questions & Answers
I have already disabled root login over the ssh by modifying /etc/ssh/sshd_config.
But how would i disable root login on a server itself.
We have implemented LDAP in our environment and our security guide states that root login must be obtained by first logging into the host using his/her own... (2 Replies)
Discussion started by: pinga123
2 Replies
7. Solaris
Hi, The issue is that root can not ssh to a Solaris 8 server:
Please help. Thank you in advance! (7 Replies)
Discussion started by: aixlover
7 Replies
8. Solaris
Hi guys.
I have two machines and I am using both as root. I need to know , is there a way by which I can ssh from Machine1 to Machine2 without giving the root password for Machine2.
I actually need to write a script so that when its executed , it will ssh into another machine and run a... (4 Replies)
Discussion started by: Junaid Subhani
4 Replies
9. Solaris
Hi Experts,
I am trying to setup passwordless ssh for root between two of my solaris servers(say A & B).
I have exchanged the public keys between both servers.
Password less ssh working fine while I try to connect from Server A to Server B.
However it is still asking password... (6 Replies)
Discussion started by: sai_2507
6 Replies
10. SuSE
I access over 100 SUSE SLES servers as root from my admin server, via ssh sessions using ssh keys, so I don't have to enter a password. My SUSE Admin server is setup in the following manner:
1) Remote root access is turned off in the sshd_config file.
2) I am the only user of this admin... (6 Replies)
Discussion started by: dvbell
6 Replies
LEARN ABOUT CENTOS
ssh-ldap-helper
SSH-LDAP-HELPER(8) BSD System Manager's Manual SSH-LDAP-HELPER(8) NAME
ssh-ldap-helper -- sshd helper program for ldap support SYNOPSIS
ssh-ldap-helper [-devw] [-f file] [-s user] DESCRIPTION
ssh-ldap-helper is used by sshd(1) to access keys provided by an LDAP. ssh-ldap-helper is disabled by default and can only be enabled in the sshd configuration file /etc/ssh/sshd_config by setting AuthorizedKeysCommand to ``/usr/libexec/openssh/ssh-ldap-wrapper''. ssh-ldap-helper is not intended to be invoked by the user, but from sshd(8) via ssh-ldap-wrapper. The options are as follows: -d Set the debug mode; ssh-ldap-helper prints all logs to stderr instead of syslog. -e Implies -w; ssh-ldap-helper halts if it encounters an unknown item in the ldap.conf file. -f ssh-ldap-helper uses this file as the ldap configuration file instead of /etc/ssh/ldap.conf (default). -s ssh-ldap-helper prints out the user's keys to stdout and exits. -v Implies -d; increases verbosity. -w ssh-ldap-helper writes warnings about unknown items in the ldap.conf configuration file. SEE ALSO
sshd(8), sshd_config(5), ssh-ldap.conf(5), HISTORY
ssh-ldap-helper first appeared in OpenSSH 5.5 + PKA-LDAP . AUTHORS
Jan F. Chadima <jchadima@redhat.com> BSD
April 29, 2010 BSD