| View previous topic :: View next topic |
| Author |
Message |
bin_streamer
n00b
Joined: 24 Nov 2004
Posts: 37
|
 Posted: Sat Mar 10, 2007 9:26 am Post subject: Cant ssh log in |
 |
|
I have re-installed a gentoo running machine and now i cant ssh log in to it from no other machine then from the original that i loged in to install from.
Does any one have any advice what to look into?
_________________
Computers are like AirConditioners .... They Stop Working Properly as soon as windows opens |
|
| Back to top |
|
 |
Aquiles
Apprentice
Joined: 23 Feb 2007
Posts: 230
Location: Somewhere, surrounded by my circumstances.
|
| Posted: Sat Mar 10, 2007 10:14 am Post subject: |
|
|
You mean that your ssh server refuses all connections exept those coming from a certain computer?
_________________
Aquiles |
|
| Back to top |
|
|
GNUtoo
Veteran
Joined: 05 May 2005
Posts: 1919
|
| Posted: Sat Mar 10, 2007 8:21 pm Post subject: |
|
|
| do you have any messages displayed when you ssh into the newly installed machine? |
|
| Back to top |
|
|
bin_streamer
n00b
Joined: 24 Nov 2004
Posts: 37
|
| Posted: Sat Mar 10, 2007 8:56 pm Post subject: |
|
|
Yup that is the odd thing ssh refuses connections from all computers then from one specific one. When i log in to the machine the messages that i get are not out of the ordinary.
_________________
Computers are like AirConditioners .... They Stop Working Properly as soon as windows opens |
|
| Back to top |
|
|
Aquiles
Apprentice
Joined: 23 Feb 2007
Posts: 230
Location: Somewhere, surrounded by my circumstances.
|
| Posted: Sat Mar 10, 2007 9:07 pm Post subject: |
|
|
Well, the configuration file is /etc/ssh/sshd_config. I don't know what is the problem, but I gess that if you take a look at the configuration file you should find something related to your problem.
_________________
Aquiles |
|
| Back to top |
|
|
bin_streamer
n00b
Joined: 24 Nov 2004
Posts: 37
|
| Posted: Sat Mar 10, 2007 9:28 pm Post subject: |
|
|
/etc/ssh/sshd_config
| Code: |
Port 22
Protocol 2
#AddressFamily any
ListenAddress 0.0.0.0
#ListenAddress ::
# HostKey for protocol version 1
#HostKey /etc/ssh/ssh_host_key
# HostKeys for protocol version 2
#HostKey /etc/ssh/ssh_host_rsa_key
#HostKey /etc/ssh/ssh_host_dsa_key
# Lifetime and size of ephemeral version 1 server key
#KeyRegenerationInterval 1h
#ServerKeyBits 768
# Logging
# obsoletes QuietMode and FascistLogging
#SyslogFacility AUTH
#LogLevel INFO
# Authentication:
#LoginGraceTime 2m
#PermitRootLogin yes
#StrictModes yes
#MaxAuthTries 6
#RSAAuthentication yes
#PubkeyAuthentication yes
#AuthorizedKeysFile .ssh/authorized_keys
# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
#RhostsRSAAuthentication no
# similar for protocol version 2
#HostbasedAuthentication no
# Change to yes if you don't trust ~/.ssh/known_hosts for
# RhostsRSAAuthentication and HostbasedAuthentication
#IgnoreUserKnownHosts no
# Don't read the user's ~/.rhosts and ~/.shosts files
#IgnoreRhosts yes
# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication no
#PermitEmptyPasswords no
# Change to no to disable s/key passwords
#ChallengeResponseAuthentication yes
# Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
#KerberosGetAFSToken no
# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes
# Set this to 'yes' to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the ChallengeResponseAuthentication and
# PasswordAuthentication. Depending on your PAM configuration,
# PAM authentication via ChallengeResponseAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to 'no'.
UsePAM yes
#AllowTcpForwarding yes
#GatewayPorts no
X11Forwarding yes
#X11DisplayOffset 10
#X11UseLocalhost yes
#PrintMotd yes
#PrintLastLog yes
#TCPKeepAlive yes
#UseLogin no
#UsePrivilegeSeparation yes
#PermitUserEnvironment no
#Compression delayed
#ClientAliveInterval 0
#ClientAliveCountMax 3
#UseDNS yes
#PidFile /var/run/sshd.pid
#MaxStartups 10
#PermitTunnel no
# no default banner path
#Banner /some/path
# override default of no subsystems
Subsystem sftp /usr/lib/misc/sftp-server
# Example of overriding settings on a per-user basis
#Match User anoncvs
# X11Forwarding no
# AllowTcpForwarding no
# ForceCommand cvs server
|
_________________
Computers are like AirConditioners .... They Stop Working Properly as soon as windows opens |
|
| Back to top |
|
|
GNUtoo
Veteran
Joined: 05 May 2005
Posts: 1919
|
| Posted: Sat Mar 10, 2007 9:36 pm Post subject: |
|
|
| no i was thinking of interactive errors such as the one where you have to modify the /root/.ssh/known_hosts |
|
| Back to top |
|
|
bin_streamer
n00b
Joined: 24 Nov 2004
Posts: 37
|
| Posted: Sat Mar 10, 2007 9:41 pm Post subject: |
|
|
ok i was comparing from an other machine that i have running .. and i dont have a file like that .. i never had to use one yet .... and i do not have a hidden file .ssh... im thinking about manually making one that looks like the one from my other server.
_________________
Computers are like AirConditioners .... They Stop Working Properly as soon as windows opens |
|
| Back to top |
|
|
GNUtoo
Veteran
Joined: 05 May 2005
Posts: 1919
|
| Posted: Sat Mar 10, 2007 9:43 pm Post subject: |
|
|
| bin_streamer wrote: | | ok i was comparing from an other machine that i have running .. and i dont have a file like that .. i never had to use one yet .... and i do not have a hidden file .ssh... im thinking about manually making one that looks like the one from my other server. |
.ssh is a hidden folder not a hidden file
do you ssh as root? as user?
if you ssh as user it's in /home/user/.ssh/known_hosts |
|
| Back to top |
|
|
bin_streamer
n00b
Joined: 24 Nov 2004
Posts: 37
|
| Posted: Sat Mar 10, 2007 9:56 pm Post subject: |
|
|
Oops my mistake i meant to say that it was a hidden folder .. Yeah i am tunelling to the machine as root at the time being since i do not have any user accounts set up as of yet.
I do not have the hidden folder in /root/.
Would it be ok if i copied the files from a working machine to this one since it does not exist yet? I am planing on keeping the same config as the other one..
_________________
Computers are like AirConditioners .... They Stop Working Properly as soon as windows opens |
|
| Back to top |
|
|
krinn
Watchman
Joined: 02 May 2003
Posts: 7470
|
| Posted: Sat Mar 10, 2007 10:13 pm Post subject: |
|
|
| bin_streamer wrote: |
Would it be ok if i copied the files from a working machine to this one since it does not exist yet? I am planing on keeping the same config as the other one.. |
I like to play wizard too sometimes, but certainly doing it with ssh & related security programs is really a bad idea...
check http://gentoo-wiki.com/HOWTO_SSH_without_a_password
also have a look at /var/log/sshd/current |
|
| Back to top |
|
|
GNUtoo
Veteran
Joined: 05 May 2005
Posts: 1919
|
| Posted: Sat Mar 10, 2007 10:31 pm Post subject: |
|
|
if you do not have any config it should ask you something like this when you ssh somewhere
| Code: | # ssh root@localhost
The authenticity of host 'localhost (127.0.0.1)' can't be established.
RSA key fingerprint is xx:xx:xx:xx:xx...
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'localhost' (RSA) to the list of known hosts.
Password: |
|
|
| Back to top |
|
|
bin_streamer
n00b
Joined: 24 Nov 2004
Posts: 37
|
| Posted: Sat Mar 10, 2007 11:09 pm Post subject: |
|
|
I am the biggest idiot for not looking at my windows firewall setting .. for some reason all of a sudden windows firewall dint allow putty connections. Im so sorry for posting before double checking. Thanks for trying to help though much obliged.
_________________
Computers are like AirConditioners .... They Stop Working Properly as soon as windows opens |
|
| Back to top |
|
|
GNUtoo
Veteran
Joined: 05 May 2005
Posts: 1919
|
| Posted: Sun Mar 11, 2007 12:16 pm Post subject: |
|
|
lol...no problem...
i'm happy that it's fixed for you
add [fixed] to your post |
|
| Back to top |
|
|
|
Networking & Security
