From owner-freebsd-questions Thu Jul 25 11:33: 5 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7812037B400 for ; Thu, 25 Jul 2002 11:33:01 -0700 (PDT) Received: from aagl.org (bdsl.66.12.46.140.gte.net [66.12.46.140]) by mx1.FreeBSD.org (Postfix) with ESMTP id 097BE43E3B for ; Thu, 25 Jul 2002 11:33:01 -0700 (PDT) (envelope-from cchu@aagl.org) Received: from [192.168.1.102] (account cchu HELO [192.168.1.102]) by aagl.org (CommuniGate Pro SMTP 3.5.9) with ESMTP id 720061 for freebsd-questions@freebsd.org; Thu, 25 Jul 2002 11:26:58 -0700 User-Agent: Microsoft-Outlook-Express-Macintosh-Edition/5.02.2022 Date: Thu, 25 Jul 2002 11:26:58 -0700 Subject: My SSH broke From: Clifford Chu To: Message-ID: Mime-version: 1.0 Content-type: text/plain; charset="US-ASCII" Content-transfer-encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I'm a novice unix guy so please bear with me. I'd been running 4.3 for about a year and everything ran great including SSH. I decided to update the box to 4.6 by booting from the CD and choosing update existing installation from the system installer. Now my SSH is broken. At first when connecting from a client, I got a server console message that said --no modules loaded for sshd service; fatal: PAM session setup failed(6); permission denied. So I looked into pam.conf and added: sshd auth required pam_ssh.so try_first_pass which silenced the console error messages. However, client connections still get denied. I've changed passwd just to be sure I'm inputting the password correctly. Here is part of the verbose output from the client: DSA key fingerprint is f8:02:db:14:c9:fa:c7:84:53:fb:d9:ad:c3:89:b0:5f. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added '192.168.1.53' (DSA) to the list of known hosts. debug1: bits set: 508/1024 debug1: ssh_dss_verify: signature correct debug1: kex_derive_keys debug1: newkeys: mode 1 debug1: SSH2_MSG_NEWKEYS sent debug1: waiting for SSH2_MSG_NEWKEYS debug1: newkeys: mode 0 debug1: SSH2_MSG_NEWKEYS received debug1: done: ssh_kex2. debug1: send SSH2_MSG_SERVICE_REQUEST debug1: service_accept: ssh-userauth debug1: got SSH2_MSG_SERVICE_ACCEPT debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: next auth method to try is publickey debug1: try privkey: /Users/user/.ssh/id_rsa debug1: try privkey: /Users/user/.ssh/id_dsa debug1: next auth method to try is keyboard-interactive debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: next auth method to try is password user@192.168.1.53's password: debug1: authentications that can continue: publickey,password,keyboard-interactive Permission denied, please try again. user@192.168.1.53's password: debug1: authentications that can continue: publickey,password,keyboard-interactive Permission denied, please try again. user@192.168.1.53's password: debug1: authentications that can continue: publickey,password,keyboard-interactive debug1: no more auth methods to try Permission denied (publickey,password,keyboard-interactive). debug1: Calling cleanup 0x18188(0x0) [localhost:~] user% So it appears that authentication is the hangup. Server logs show nothing after my change to pam.conf. But it had worked fine before. I've searched the maillist archives but didn't find anything. Where did I go wrong? Thanks for your help. Cliff To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message