|
ru.linux
- RU.LINUX ---------------------------------------------------------------------
From : Dennis Prochko 2:5020/400 04 Feb 2005 11:09:49
To : Eugene B. Berdnikov
Subject : Re: Проблемы с подключением по ssh
--------------------------------------------------------------------------------
Eugene B. Berdnikov wrote:
> sshd -D -o LogLevel=DEBUG3
bash-2.05b# sshd -D -o LogLevel=DEBUG3
debug2: read_server_config: filename /etc/ssh/sshd_config
debug1: sshd version OpenSSH_3.6.1p2
debug1: private host key: #0 type 0 RSA1
debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key.
debug1: read PEM private key done: type RSA
debug1: private host key: #1 type 1 RSA
debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key.
debug1: read PEM private key done: type DSA
debug1: private host key: #2 type 2 DSA
bash-2.05b# tail -n 53 /var/log/auth.log
Feb 3 17:54:07 gate sshd[4269]: socket: Address family not supported by
protocol
Feb 3 17:54:07 gate sshd[4269]: debug1: Bind to port 22 on 0.0.0.0.
Feb 3 17:54:07 gate sshd[4269]: Server listening on 0.0.0.0 port 22.
Feb 3 17:54:07 gate sshd[4269]: Generating 768 bit RSA key.
Feb 3 17:54:07 gate sshd[4269]: RSA key generation complete.
Feb 3 17:54:30 gate sshd[4269]: debug1: Forked child 4271.
Feb 3 17:54:30 gate sshd[4271]: Connection from 192.168.0.240 port 33773
Feb 3 17:54:30 gate sshd[4271]: debug1: Client protocol version 2.0;
client software version OpenSSH_3.6.1p2
Feb 3 17:54:30 gate sshd[4271]: debug1: match: OpenSSH_3.6.1p2 pat OpenSSH*
Feb 3 17:54:30 gate sshd[4271]: debug1: Enabling compatibility mode for
protocol 2.0
Feb 3 17:54:30 gate sshd[4271]: debug1: Local version string
SSH-1.99-OpenSSH_3.6.1p2
Feb 3 17:54:30 gate sshd[4271]: debug2: Network child is on pid 4272
Feb 3 17:54:30 gate sshd[4271]: debug3: preauth child monitor started
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:30 gate sshd[4271]: debug3: monitor_read: checking request 0
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_answer_moduli: got
parameters: 1024 2048 8192
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_send entering: type 1
Feb 3 17:54:30 gate sshd[4271]: debug2: monitor_read: 0 used once,
disabling now
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:30 gate sshd[4271]: debug3: monitor_read: checking request 4
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_answer_sign
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_answer_sign: signature
0x809cc10(143)
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_send entering: type 5
Feb 3 17:54:30 gate sshd[4271]: debug2: monitor_read: 4 used once,
disabling now
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:30 gate sshd[4271]: debug3: monitor_read: checking request 6
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_answer_pwnamallow
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_answer_pwnamallow: sending
MONITOR_ANS_PWNAM: 1
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_send entering: type 7
Feb 3 17:54:30 gate sshd[4271]: debug2: monitor_read: 6 used once,
disabling now
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:30 gate sshd[4271]: debug3: monitor_read: checking request 41
Feb 3 17:54:30 gate sshd[4271]: debug1: Starting up PAM with username
"dennis"
Feb 3 17:54:30 gate sshd[4271]: debug3: Trying to reverse map address
192.168.0.240.
Feb 3 17:54:30 gate sshd[4271]: debug1: PAM setting rhost to
"192.168.0.240"
Feb 3 17:54:30 gate sshd[4271]: debug2: monitor_read: 41 used once,
disabling now
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:30 gate sshd[4271]: debug3: monitor_read: checking request 3
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_answer_authserv:
service=ssh-connection, style=
Feb 3 17:54:30 gate sshd[4271]: debug2: monitor_read: 3 used once,
disabling now
Feb 3 17:54:30 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:30 gate sshd[4271]: debug3: monitor_read: checking request 10
Feb 3 17:54:30 gate sshd(pam_unix)[4271]: authentication failure;
logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.240 user=dennis
Feb 3 17:54:33 gate sshd[4271]: debug1: PAM password authentication
failed for dennis: Authentication failure
Feb 3 17:54:33 gate sshd[4271]: debug3: mm_answer_authpassword: sending
result 0
Feb 3 17:54:33 gate sshd[4271]: debug3: mm_request_send entering: type 11
Feb 3 17:54:33 gate sshd[4271]: Failed none for dennis from
192.168.0.240 port 33773 ssh2
Feb 3 17:54:33 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:40 gate sshd[4271]: debug3: monitor_read: checking request 10
Feb 3 17:54:43 gate sshd[4271]: debug1: PAM password authentication
failed for dennis: Authentication failure
Feb 3 17:54:43 gate sshd[4271]: debug3: mm_answer_authpassword: sending
result 0
Feb 3 17:54:43 gate sshd[4271]: debug3: mm_request_send entering: type 11
Feb 3 17:54:43 gate sshd[4271]: Failed password for dennis from
192.168.0.240 port 33773 ssh2
Feb 3 17:54:43 gate sshd[4271]: debug3: mm_request_receive entering
Feb 3 17:54:44 gate sshd[4271]: debug1: Calling cleanup 0x8063b00(0x0)
Feb 3 17:54:44 gate sshd(pam_unix)[4271]: 1 more authentication
failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.240
user=dennis
bash-2.05b# cat /etc/pam.d/sshd
#%PAM-1.0
auth required pam_stack.so service=system-auth
auth required pam_nologin.so
account required pam_stack.so service=system-auth
password required pam_stack.so service=system-auth
session required pam_stack.so service=system-auth
А вот как выглядит лог, когда подключаюсь с винды (частично):
Feb 3 17:50:42 gate sshd[4162]: Accepted password for dennis from
192.168.0.249 port 2595 ssh2
Feb 3 17:50:42 gate sshd[4162]: nss_ldap: reconnecting to LDAP server...
Feb 3 17:50:42 gate sshd(pam_unix)[4164]: session opened for user
dennis by (uid=1004)
Feb 3 17:50:42 gate sshd[4162]: nss_ldap: reconnected to LDAP server
after 1 attempt(s)
Feb 3 17:50:51 gate su(pam_unix)[4199]: session opened for user root by
dennis(uid=1004)
P.S. Аутентификация идет через LDAP посредством nss_ldap (pam_ldap не
используется).
--
WBR, Dennis Prochko
--- ifmail v.2.15dev5.3
* Origin: Demos online service (2:5020/400)
Вернуться к списку тем, сортированных по: возрастание даты уменьшение даты тема автор
|
