OpenSSL

katumba

59
+0/-0

I recently updated to OpenSSL 0.9.6b and now cannot login via SSH (putty). (I also updated Gnu, Apache & ProFTP, if that matters). It will take the username, but keeps saying access denied on the password. I can log directly into the machine w/ same password fine. I also updated putty to recent ver. Any ideas?

Also, does Acid/Snort automatically block IP's that are repeatedly trying to access the system, or does Guardian have to be installed to get that to work? If so, where do I go to get Guardian? Is it recommended?

Logged

mrjhb3

1,188
+0/-0

OpenSSL

« Reply #1 on: May 05, 2005, 04:50:33 AM »

Check to see which procotol you are using for ssh.
Look in /etc/ssh/sshd_config. If you have this line:
Protocol 2

Then change your ssh to version 2. If that doesn't work, then tail -f /var/log/messages and see what you get when you are trying to login.

JB

Logged

......

katumba

59
+0/-0

here is log file. SSH2

« Reply #2 on: May 05, 2005, 07:47:48 PM »

2005-05-05 10:46:32   Server version: SSH-2.0-OpenSSH_3.7.1p1
2005-05-05 10:46:32   We claim version: SSH-2.0-PuTTY_Release_0.58
2005-05-05 10:46:32   Using SSH protocol version 2
2005-05-05 10:46:32   Doing Diffie-Hellman group exchange
2005-05-05 10:46:32   Doing Diffie-Hellman key exchange
2005-05-05 10:46:33   Host key fingerprint is:
2005-05-05 10:46:33   ssh-rsa 1024 f6:fb:f2:b3:b5:7b:e1:98:85:07:68:4d:ff:a7:b6:68
2005-05-05 10:46:33   Initialised AES-256 client->server encryption
2005-05-05 10:46:33   Initialised HMAC-SHA1 client->server MAC algorithm
2005-05-05 10:46:33   Initialised AES-256 server->client encryption
2005-05-05 10:46:33   Initialised HMAC-SHA1 server->client MAC algorithm
2005-05-05 10:46:37   Sent password
2005-05-05 10:46:37   Access denied

Logged

CharlieBrady

6,918
+3/-0

Re: here is log file. SSH2

« Reply #3 on: May 05, 2005, 09:40:51 PM »

Quote from: "katumba"

...
2005-05-05 10:46:37 Sent password
2005-05-05 10:46:37 Access denied

Do you have password authentication enabled for SSH on the server?

Logged

katumba

59
+0/-0

OpenSSL

« Reply #4 on: May 05, 2005, 10:44:00 PM »

Allow secure shell access using standard passwords - yes
Allow administrative command line access over secure shell - yes
Secure shell access - allow local access only

Is that what you mean by password authentication enabled?

Logged

CharlieBrady

6,918
+3/-0

OpenSSL

« Reply #5 on: May 05, 2005, 10:48:07 PM »

Quote from: "katumba"

Allow secure shell access using standard passwords - yes
Allow administrative command line access over secure shell - yes
Secure shell access - allow local access only

Is that what you mean by password authentication enabled?

Yes.

Logged

katumba

59
+0/-0

OpenSSL

« Reply #6 on: May 16, 2005, 03:25:48 AM »

Also, logging in to webmail on https returns a 'password incorrect' error.

Same password on internal pop works fine.

Ideas?

Logged