From nobody Mon Jan 29 13:14:29 2024
X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
	by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TNpg65krTz58hYp
	for <freebsd-questions@mlmmj.nyi.freebsd.org>; Mon, 29 Jan 2024 13:14:42 +0000 (UTC)
	(envelope-from jfadams1963@proton.me)
Received: from mail-4322.protonmail.ch (mail-4322.protonmail.ch [185.70.43.22])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256
	 client-signature RSA-PSS (4096 bits) client-digest SHA256)
	(Client CN "protonmail.com", Issuer "R3" (verified OK))
	by mx1.freebsd.org (Postfix) with ESMTPS id 4TNpg519GRz4HvQ
	for <freebsd-questions@freebsd.org>; Mon, 29 Jan 2024 13:14:41 +0000 (UTC)
	(envelope-from jfadams1963@proton.me)
Authentication-Results: mx1.freebsd.org;
	dkim=pass header.d=proton.me header.s=protonmail header.b=Hp07lM7D;
	dmarc=pass (policy=quarantine) header.from=proton.me;
	spf=pass (mx1.freebsd.org: domain of jfadams1963@proton.me designates 185.70.43.22 as permitted sender) smtp.mailfrom=jfadams1963@proton.me
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=proton.me;
	s=protonmail; t=1706534078; x=1706793278;
	bh=6ZiKRI9E9Hj2O4uE4FgM9HwcWbLpFO/H67Zfnp3LwIE=;
	h=Date:To:From:Subject:Message-ID:In-Reply-To:References:
	 Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID:
	 Message-ID:BIMI-Selector;
	b=Hp07lM7DoS7Gud2/SxJDP8P4YS9/U2cpvdLfBLOvoi/aR9tHEvtg1CujqvN40EmBc
	 Gkj/rc7p/ZegfL1lA7mHdblcEGpzugq+lUT9aKMsnoCueWPELRQmoica6YRmr/0w1g
	 KkKOCNT60ALs6wLRRlHMiqlqbradcv76kfOOQk4Fi7kstbT0gtNHpf2eR8brypBPcK
	 9w3QCgY2ZJfsetA1enCdvxhTnoE3S4yZMtEsrLISrXGLsu7mAvTYQ6ZDWkYdfvfiQV
	 rvgkRUXKdGwZekNxpXQPREDRBWI7XynD9Ba0QnPUvLxi/fRXQ2XMG22Xp6CnZ9wN0K
	 dXldFSiEb5Rxg==
Date: Mon, 29 Jan 2024 13:14:29 +0000
To: "freebsd-questions@freebsd.org" <freebsd-questions@freebsd.org>
From: Jonathan Adams <jfadams1963@proton.me>
Subject: Re: Enabling SSHD
Message-ID: <BHs6axVCDQRUWc9O5KLVIF5b9tVo_qUIXZfJ3ASj6U-6sfJKBhcSrOn_VWfYfrxOQyFSEZKLjQuHbBKJ57NuwR-jAl7kDRYp7ix7bDVgCfk=@proton.me>
In-Reply-To: <CPja5CJLsYzkPuo_qd5lnJuUj6lBBCW2uHo3NcbFubhGSKa2gNEu0ETvjZSAwI_-rQFuVvUJR2s10xbz40uL17k1lpLSCiz8azHd77S9LK8=@proton.me>
References: <20240129125745.fuh6nnc4dooto2oz@yosemite.mars.lan> <CPja5CJLsYzkPuo_qd5lnJuUj6lBBCW2uHo3NcbFubhGSKa2gNEu0ETvjZSAwI_-rQFuVvUJR2s10xbz40uL17k1lpLSCiz8azHd77S9LK8=@proton.me>
Feedback-ID: 80741059:user:proton
List-Id: User questions <freebsd-questions.freebsd.org>
List-Archive: https://lists.freebsd.org/archives/freebsd-questions
List-Help: <mailto:questions+help@freebsd.org>
List-Post: <mailto:questions@freebsd.org>
List-Subscribe: <mailto:questions+subscribe@freebsd.org>
List-Unsubscribe: <mailto:questions+unsubscribe@freebsd.org>
Sender: owner-freebsd-questions@freebsd.org
X-BeenThere: freebsd-questions@freebsd.org
MIME-Version: 1.0
Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg=pgp-sha512; boundary="------d18de3d94c718490e11015df27aa06482d9b6052865643d7df56323b0ef5e0a2"; charset=utf-8
X-Spamd-Bar: ------
X-Spamd-Result: default: False [-6.50 / 15.00];
	SIGNED_PGP(-2.00)[];
	NEURAL_HAM_MEDIUM(-1.00)[-1.000];
	NEURAL_HAM_LONG(-1.00)[-1.000];
	NEURAL_HAM_SHORT(-1.00)[-0.999];
	DMARC_POLICY_ALLOW(-0.50)[proton.me,quarantine];
	RWL_MAILSPIKE_EXCELLENT(-0.40)[185.70.43.22:from];
	MIME_GOOD(-0.20)[multipart/signed,multipart/mixed,text/plain];
	R_SPF_ALLOW(-0.20)[+ip4:185.70.43.0/24];
	R_DKIM_ALLOW(-0.20)[proton.me:s=protonmail];
	MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org];
	ASN(0.00)[asn:62371, ipnet:185.70.43.0/24, country:CH];
	RCPT_COUNT_ONE(0.00)[1];
	MISSING_XM_UA(0.00)[];
	FROM_HAS_DN(0.00)[];
	MIME_TRACE(0.00)[0:+,1:+,2:+,3:~];
	TO_MATCH_ENVRCPT_ALL(0.00)[];
	FROM_EQ_ENVFROM(0.00)[];
	DKIM_TRACE(0.00)[proton.me:+];
	MID_RHS_MATCH_FROM(0.00)[];
	TO_DN_EQ_ADDR_ALL(0.00)[];
	ARC_NA(0.00)[];
	RCVD_COUNT_ZERO(0.00)[0];
	HAS_ATTACHMENT(0.00)[]
X-Rspamd-Queue-Id: 4TNpg519GRz4HvQ

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------d18de3d94c718490e11015df27aa06482d9b6052865643d7df56323b0ef5e0a2
Content-Type: multipart/mixed;boundary=---------------------389682ebf2940787490e57cbb60521a0

-----------------------389682ebf2940787490e57cbb60521a0
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;charset=utf-8

------- Forwarded Message -------
From: Jonathan Adams <jfadams1963@proton.me>
Date: On Monday, January 29th, 2024 at 8:10 AM
Subject: Re: Enabling SSHD
To: paulf@quillandmouse.com <paulf@quillandmouse.com>


> On Monday, January 29th, 2024 at 7:57 AM, Paul M Foster paulf@quillandmo=
use.com wrote:
> =


> > Folks:
> > =


> > I have a new FreeBSD 14 install. I'd like to be able to do some manage=
ment
> > on this machine (on my LAN) via SSH. I have a stock /etc/ssh/sshd_conf=
ig
> > file, except for allowing root to login. I've made that edit to the fi=
le,
> > and restarted the SSH daemon via /etc/rc.d/sshd restart. However, this
> > machine still refuses SSH connections, either from a regular user or r=
oot.
> > What am I doing wrong?

  If I recall correctly, password-based logins are disabled by default in =
favour of key-based logins. You'll need to enable password-based logins or=
 (better) go with key-based logins.

 Please disable root logins via SSH. Even on your LAN, it's bad practice.
 =


- Jonathan Adams
 ____________________________________________
Before Turing, things were done to numbers.
After Turing, numbers began doing things"
- George Dyson
-----------------------389682ebf2940787490e57cbb60521a0--

--------d18de3d94c718490e11015df27aa06482d9b6052865643d7df56323b0ef5e0a2
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: ProtonMail

wnUEARYKACcFgmW3pJsJkI6O/sbt8r3IFiEEcBGzOO9wDbcpT/10jo7+xu3y
vcgAAPOJAP0VdPKajJ7T/v0nLFhyns8HopCRjUkWvWRxh6FXMt2ezQD/Vw5y
eiTbnW5rvyBQYJhOecg/yxYbm43m6e7iNz6Wlwo=
=q4Es
-----END PGP SIGNATURE-----


--------d18de3d94c718490e11015df27aa06482d9b6052865643d7df56323b0ef5e0a2--