From owner-freebsd-questions@freebsd.org Tue Jan 3 11:15:57 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5F453C9B35B for ; Tue, 3 Jan 2017 11:15:57 +0000 (UTC) (envelope-from woodsb02@gmail.com) Received: from mail-wj0-x234.google.com (mail-wj0-x234.google.com [IPv6:2a00:1450:400c:c01::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 17B0F1EEF for ; Tue, 3 Jan 2017 11:15:56 +0000 (UTC) (envelope-from woodsb02@gmail.com) Received: by mail-wj0-x234.google.com with SMTP id v7so442658186wjy.2 for ; Tue, 03 Jan 2017 03:15:56 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=xocIC2O0tJsgLcxm5l0K607PSHLbdNLJbJ2NZ7r58ak=; b=qG5bFQNwTI18z3TsGXxv8n+oOP3TA0YQ+R+YkzGbtlbdeLv4D8ryEDn7FTNkV0j7j0 RF28vCZkdtAjTKxip3v0Iwcs+EAKyeB6i/m2sGCsiSTurzuE3R2NA0b3M+73IS2qrirB g3aHWDCuP/BHCCVZV87Gsu4Pvvs4n/a+UeS+jpYbWinC0isxxqZqxmhssxU/6qgh37o9 R9pM29SaeSP9SOFeYlqQ2+H6ZhVT4sOhB8mh6jbwbltm73GaORiZAfmIjU7wIa2NDT+O 23Z//LBu5xGw76pLMa3Wf4k/NTuoAhGcDAEA68aZx4MoW+47aMpBx+fCR8MK838FLv7t tIrQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=xocIC2O0tJsgLcxm5l0K607PSHLbdNLJbJ2NZ7r58ak=; b=IHR6SzuFPcDXrqM91GvktF6YG8BuHqh2OVm4IJMZ4VwCMzKUUFsXLIjwp9z20OLYK9 qWTBx8lFN1hUcKMS8jkmb0ByGUDIfJh/ttH4ygNFz1d+xNpWJcxb20TzErdXL9qoDdWz nA+zsPnl576Ke0vMsNcCWjNP1pIZt72OpDbJdSkyzNaVCKNvwNpYlgh4tPAizQo8cnAi 2OWtyS9ENnQ3uywgl1y9lr6dhJbH2g7DnbGyeDHTwxIzBfx+YYfDqjP62V6Ts6hOnYXb 3/Ga1pJ1BO6oiZd6CCFi4gyORp/ZU1/CoiT9rcdSN20kLVDoNwAx2fSvQkLuukRZnZb+ p7Qw== X-Gm-Message-State: AIkVDXIUm7ozcGvtfvalPkx6cLGpR4fAQnWhH+XwXwtSBZB+/dfRW9AinzVTttOG61jQQMLdpIlW1z48FUUbTw== X-Received: by 10.194.127.40 with SMTP id nd8mr61396472wjb.43.1483442155332; Tue, 03 Jan 2017 03:15:55 -0800 (PST) MIME-Version: 1.0 Received: by 10.194.240.4 with HTTP; Tue, 3 Jan 2017 03:15:54 -0800 (PST) In-Reply-To: <20170102172615.516dc912.freebsd@edvax.de> References: <5869ADFB.6080000@gmail.com> <20170102024359.aa82ae3e.freebsd@edvax.de> <5869F77D.5050106@gmail.com> <20170102172615.516dc912.freebsd@edvax.de> From: Ben Woods Date: Tue, 3 Jan 2017 19:15:54 +0800 Message-ID: Subject: Re: how to allow user toor login through ssh To: Polytropon Cc: Ernie Luzar , "freebsd-questions@freebsd.org" Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.23 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jan 2017 11:15:57 -0000 On 3 January 2017 at 00:26, Polytropon wrote: > On Mon, 02 Jan 2017 14:47:25 +0800, Ernie Luzar wrote: > > Using putty from remote location I connect to the host ok, but toor > > login fails with denied message. For user name I use toor ie; no > > @domain. Remote putty ssh does work using other account names only. > > Check your PuTTY configuration, as well as the exact message > from sshd (and also take a look at /var/log/auth.log). It might > be possible that PuTTY somehow mangles the "user" part of the > commonly used "user@host" information. Make sure everything > works as intended at both sides of the connection. > The openssh daemon prevents login as root or toor (any user with UID 0) in the default configuration that ships with FreeBSD. This can be adjusted by setting the following in /etc/ssh/sshd_config: PermitRootLogin yes Note however, that it is not generally advisable to allow root or toor login via ssh, as this is a frequently attempted username for script kiddies and bots running random brute force attacks. Tread wisely. Regards, Ben