From owner-freebsd-stable Mon Sep 3 22:32: 2 2001 Delivered-To: freebsd-stable@freebsd.org Received: from topperwein.dyndns.org (acs-24-154-28-172.zoominternet.net [24.154.28.172]) by hub.freebsd.org (Postfix) with ESMTP id CE70A37B403 for ; Mon, 3 Sep 2001 22:31:56 -0700 (PDT) Received: from topperwein.dyndns.org (topperwein.dyndns.org [192.168.168.10]) by topperwein.dyndns.org (8.11.6/8.11.6) with ESMTP id f845W1944321 for ; Tue, 4 Sep 2001 01:32:01 -0400 (EDT) (envelope-from behanna@zbzoom.net) Date: Tue, 4 Sep 2001 01:31:56 -0400 (EDT) From: Chris BeHanna Reply-To: Chris BeHanna To: FreeBSD-Stable Subject: Re: Disallowed ssh part II In-Reply-To: Message-ID: <20010904012308.P44125-100000@topperwein.dyndns.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tue, 4 Sep 2001, Conrado Vardanega wrote: > For those that asked for verbose mode output and stuff, there is it. > > Just to remember, IPs have reverse DNS set correctly (forward/reverse > matches), This problem, as follows, was reproduced locally (ssh'ing to its ^^^^^^^^^^^^^^ > own ip address), its not tcpwrapper, (its "ALL : ALL : allow" ) ^^^^^^^^^^^^^^ There is an ssh_config or sshd_config knob you have to turn. I have exactly this same problem on some Linux and Solaris hosts at the office, but not at home on my FreeBSD box. It could also be an sshd/PAM interaction. I'll note that the challenge/response stuff is turned off on the servers that won't let me ssh to localhost, and there's a warning in sshd_config about turning that off on machines that use PAM. -- Chris BeHanna Software Engineer (Remove "bogus" before responding.) behanna@bogus.zbzoom.net I was raised by a pack of wild corn dogs. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message