From owner-freebsd-current@FreeBSD.ORG Thu Jan 8 16:51:02 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8D7F116A4CE for ; Thu, 8 Jan 2004 16:51:02 -0800 (PST) Received: from ms-smtp-02-eri0.socal.rr.com (ms-smtp-02-qfe0.socal.rr.com [66.75.162.134]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3344143D48 for ; Thu, 8 Jan 2004 16:51:01 -0800 (PST) (envelope-from sean@mcneil.com) Received: from server.mcneil.com (cpe-66-75-176-109.socal.rr.com [66.75.176.109])i090ovNR018505; Thu, 8 Jan 2004 16:50:58 -0800 (PST) Received: from [66.75.176.109] (mcneil.com [66.75.176.109]) by server.mcneil.com (8.12.10/8.12.10) with ESMTP id i090opjo001623; Thu, 8 Jan 2004 16:50:57 -0800 (PST) (envelope-from sean@mcneil.com) From: Sean McNeil To: Dag-Erling =?ISO-8859-1?Q?Sm=F8rgrav?= In-Reply-To: References: <1073588140.92541.2.camel@server.mcneil.com> Content-Type: text/plain; charset=iso-8859-1 Message-Id: <1073609451.1590.5.camel@server.mcneil.com> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.5 Date: Thu, 08 Jan 2004 16:50:51 -0800 Content-Transfer-Encoding: 8bit X-DCC-sonic.net-Metrics: server.mcneil.com 1156; Body=2 Fuz1=2 Fuz2=2 X-Mailman-Approved-At: Thu, 08 Jan 2004 16:54:51 -0800 cc: freebsd-current@freebsd.org Subject: Re: ssh not working for me anymore X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jan 2004 00:51:02 -0000 Still doesn't work: [sean@server sean]$ ssh -V OpenSSH_3.7.1p2 FreeBSD-20040106, SSH protocols 1.5/2.0, OpenSSL 0.9.7c 30 Sep 2003 If I try with a user in the /etc/passwd file, all is fine. If I try with a user in LDAP, no joy. Jan 8 14:33:47 server sshd[1052]: Failed password for sean from 66.75.176.109 port 51302 ssh2 login, gdm, xscreensaver+PAM_patch all work fine yet sshd doesn't any longer. My /etc/pam.d/sshd file looks like: # # $FreeBSD: src/etc/pam.d/sshd,v 1.15 2003/04/30 21:57:54 markm Exp $ # # PAM configuration for the "sshd" service # # auth auth required pam_nologin.so no_warn auth sufficient pam_opie.so no_warn no_fake_prompts auth requisite pam_opieaccess.so no_warn allow_local #auth sufficient pam_krb5.so no_warn try_first_pass #auth sufficient pam_ssh.so no_warn try_first_pass auth include ldap auth required pam_unix.so no_warn try_first_pass # account #account required pam_krb5.so account sufficient /usr/local/lib/pam_ldap.so no_warn try_first_pass account required pam_login_access.so account required pam_unix.so # session #session optional pam_ssh.so session required pam_permit.so # password #password sufficient pam_krb5.so no_warn try_first_pass password required pam_unix.so no_warn try_first_pass ldap: auth sufficient /usr/local/lib/pam_ldap.so no_warn try_first_pass Cheers, Sean On Thu, 2004-01-08 at 14:25, Dag-Erling Smørgrav wrote: > Sean McNeil writes: > > I think ssh is no longer compiled/configured the same (??) I'm using > > ldap and had no trouble until the recent merge of the openssl/openssh > > stuff. Is there a missing --with-md5-passwords or something? > > We've never built OpenSSH with --with-md5-passwords. > > Could you try to cvsup and rebuild, and get back to me if it still > doesn't work? > > DES