strange ssh problem

yull · 12-08-2004, 08:35 AM

Hi all,

this is my problem:
I can only access to my server via ssh using the root account.
If I try to use another account, it tells me: "Permission denied, please try again."
In the /var/log/auth.log, I've got an "Dec 8 16:08:01 razorback sshd[1663]: Failed password for <myuser> from <my current host ip> port 57305 ssh2"

Of course I've tried with a stupid password.
I've also changed to /etc/ssh/sshd-config file and added the following line:
AllowUser <myuser> root

the idea is to not use root, but only <myuser> of course, but before removing the root account, I'd like to make the <myuser> accoutn working

I'm looking now for many hours on the web, but without success. I'm getting depressed with this..

I'm using a Debian version

The strange about it is that is used to work two months ago, but then I had to shudown the server.

I'ev put the server up again, installed cvs, and the the mess started. I can any way access to cvs using the <myacount> anyway.

thanks

sigsegv · 12-08-2004, 12:17 PM

Are you certain your password is right? Are you able to log in to the console using these same credentials?

yull · 12-08-2004, 05:00 PM

yes I am sure of the password, I especially changed it to something easy

but I gor more strange things now, I just encountered:
when I connect using ftp, I've got the following error:

Code:

Connected to server
530- System bootup in progress - please wait
530 System not available.
Connection closed by remote host.

When I connect in telnet, I have

Code:

Debian GNU/Linux 3.0 razorback.xavier.be
razorback login: yull
System bootup in progress - please wait

Login incorrect

my tomcat server is runnning fine and accessible
I can also access cvs just fine

so maybe it is not a securitty problem, I should move my topic to another forum, sorry, guys
but if you know what's happening to me, I'll pay you a virtual beer if you'd told me;-)))))

Krugger · 12-08-2004, 08:57 PM

I have never seen that system boot up message before. But taking a wild guess I would point the finger at PAM if it is installed.

sigsegv · 12-08-2004, 10:21 PM

Remove /etc/nologin

yull · 12-09-2004, 03:39 AM

IT's WORKING!!!

ALELOUIA!!!!

lol;-)

how come? what's that fuc...ng nologin file???
where dos it come from

I'm going to google about it

thanks to you all guys, I was starting loosing my hair about it!!!

eozcan · 12-10-2004, 09:46 AM

For security reasons, rexec, rsh, and rlogin are not enabled by default. To allow root to use these tools, add the names of the tools you wish to allow to the /etc/securetty. If you wanted to enable root login using rexec, rsh, and rlogin, add the following lines to /etc/securetty:

rexec
rsh
rlogin

To allow root to log in using these tools via telnet (an even worse idea but necessary in some environments), add a few more lines:

pts/0
pts/1

sigsegv · 12-10-2004, 10:19 AM

Quote:

Originally posted by yull

how come? what's that fuc...ng nologin file???

Code:

NOLOGIN(5)                 Linux Programmer's Manual                NOLOGIN(5)

NAME
       nologin - prevent non-root users from logging into the system

DESCRIPTION
       If  the  file  /etc/nologin  exists, login(1) will allow access only to
       root. Other users will be shown the contents of  this  file  and  their
       logins will be refused.

FILES
       /etc/nologin

SEE ALSO
       login(1), shutdown(8)

Linux                             1992-12-29                        NOLOGIN(5)

Don't enable the 'r' tools, or telnet. SSH is available just about everywhere these days, and there's not really a good reason (that I can think of) not to use it.

yull · 12-11-2004, 02:58 PM

hi

I found something out here:

As I told, I added a script in the init.d/ to start tomcat.

Now, on system boot, I see actualley the start of tomcat, but it after the booting process of it, it looks like it stays hanging, an the system boot stucks there.

any idea why?

any idea how to avoid it?

thkx