Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: katumba on May 03, 2005, 07:38:47 PM

Title: OpenSSL
Post by: katumba on May 03, 2005, 07:38:47 PM

I recently updated to OpenSSL 0.9.6b and now cannot login via SSH (putty). (I also updated Gnu, Apache & ProFTP, if that matters). It will take the username, but keeps saying access denied on the password. I can log directly into the machine w/ same password fine. I also updated putty to recent ver. Any ideas?

Also, does Acid/Snort automatically block IP's that are repeatedly trying to access the system, or does Guardian have to be installed to get that to work?  If so, where do I go to get Guardian? Is it recommended?

Title: OpenSSL
Post by: mrjhb3 on May 05, 2005, 04:50:33 AM

Check to see which procotol you are using for ssh.
Look in /etc/ssh/sshd_config.  If you have this line:
Protocol 2

Then change your ssh to version 2.  If that doesn't work, then tail -f /var/log/messages and see what you get when you are trying to login.

JB

Title: here is log file. SSH2
Post by: katumba on May 05, 2005, 07:47:48 PM

2005-05-05 10:46:32   Server version: SSH-2.0-OpenSSH_3.7.1p1
2005-05-05 10:46:32   We claim version: SSH-2.0-PuTTY_Release_0.58
2005-05-05 10:46:32   Using SSH protocol version 2
2005-05-05 10:46:32   Doing Diffie-Hellman group exchange
2005-05-05 10:46:32   Doing Diffie-Hellman key exchange
2005-05-05 10:46:33   Host key fingerprint is:
2005-05-05 10:46:33   ssh-rsa 1024 f6:fb:f2:b3:b5:7b:e1:98:85:07:68:4d:ff:a7:b6:68
2005-05-05 10:46:33   Initialised AES-256 client->server encryption
2005-05-05 10:46:33   Initialised HMAC-SHA1 client->server MAC algorithm
2005-05-05 10:46:33   Initialised AES-256 server->client encryption
2005-05-05 10:46:33   Initialised HMAC-SHA1 server->client MAC algorithm
2005-05-05 10:46:37   Sent password
2005-05-05 10:46:37   Access denied

Title: Re: here is log file. SSH2
Post by: CharlieBrady on May 05, 2005, 09:40:51 PM

Quote from: "katumba"

...
2005-05-05 10:46:37   Sent password
2005-05-05 10:46:37   Access denied

Do you have password authentication enabled for SSH on the server?

Title: OpenSSL
Post by: katumba on May 05, 2005, 10:44:00 PM

Allow secure shell access using standard passwords - yes
Allow administrative command line access over secure shell - yes
Secure shell access - allow local access only

Is that what you mean by password authentication enabled?

Title: OpenSSL
Post by: CharlieBrady on May 05, 2005, 10:48:07 PM

Quote from: "katumba"

Allow secure shell access using standard passwords - yes
Allow administrative command line access over secure shell - yes
Secure shell access - allow local access only

Is that what you mean by password authentication enabled?

Yes.

Title: OpenSSL
Post by: katumba on May 16, 2005, 03:25:48 AM

Also, logging in to webmail on https returns a 'password incorrect' error.

Same password on internal pop works fine.

Ideas?