From nobody Mon Jan 29 15:57:58 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4TNtHb37rJz58xHx for ; Mon, 29 Jan 2024 15:58:03 +0000 (UTC) (envelope-from paulf@quillandmouse.com) Received: from iguana.tulip.relay.mailchannels.net (iguana.tulip.relay.mailchannels.net [23.83.218.253]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4TNtHZ3hd2z4kdd for ; Mon, 29 Jan 2024 15:58:02 +0000 (UTC) (envelope-from paulf@quillandmouse.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=quillandmouse.com header.s=dreamhost header.b=WVDUzLsq; arc=pass ("mailchannels.net:s=arc-2022:i=1"); dmarc=none; spf=pass (mx1.freebsd.org: domain of paulf@quillandmouse.com designates 23.83.218.253 as permitted sender) smtp.mailfrom=paulf@quillandmouse.com X-Sender-Id: dreamhost|x-authsender|paulf@quillandmouse.com Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 17877363D1A for ; Mon, 29 Jan 2024 15:58:00 +0000 (UTC) Received: from pdx1-sub0-mail-a230.dreamhost.com (unknown [127.0.0.6]) (Authenticated sender: dreamhost) by relay.mailchannels.net (Postfix) with ESMTPA id B07F73648B0 for ; Mon, 29 Jan 2024 15:57:59 +0000 (UTC) ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1706543879; a=rsa-sha256; cv=none; b=n+Tm2zgoNDFzrnsm3tXVhmMKJSSh5qIU5jUPytJxHSI6tEAnN8KsFcuBkKNbO0nZ+qnEte TZ9n6RoZ9wK4ZTOijC01afwzciYipZiE57g3N+IO47hyhIEgOgsb9+tq614nK8s8U5oTDd 7ENru022zW+cSK8RJHD4ErZRpntiWQxnr+KvNbNJ2vLnZ28vGJG9jsoR2Wbso7KkOWRnsD SvdmQCFAcjofxwO5st0H+Vu/owkLKWvLevxn7yLa4dz2TzzE9KmVO0h9IKAyoqMovL3ZEE Eg7/PIGGQHonm74jRFkbo0WbnnOCe6z3nVfFDwK7EzbH/rFk4hHBPSzu7uw9OA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=mailchannels.net; s=arc-2022; t=1706543879; h=from:from:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:in-reply-to:in-reply-to: references:references:dkim-signature; bh=UKYiBSnWmlc3nGTsl+iFvBEj/+ZjW1hZe4myySEf+QY=; b=EjyNiUknf8/Abe5ZA2u3SpqaiMHcTxR66Afzo82RgGZr6bzMvFSKrufvlrfKH4PcuAajHm /XtOSUKSQLq0t/ngBe9q1+uQSzi2Msp/TD737VGaIZwo0wY3kHNQe6e+gB7ZYDduSjXgp6 wI5tkinhbQz756+lORipVnp+HNqWdvgeZP2Hky6zxqGerkNuEGYqyyHZYM+vmttqX1CSAO /PjN75QUfn2/Zl15L+Uxek5Iqnt5TJMELt6/mbW3loqRAaq3qamLk2RghzFBdPf+wkkYHa 9oHnboEDyXwyxYiSMV2A9+NSG3/uFEtY3La508GDidRZQGmDH1JdDQUsYG8O4g== ARC-Authentication-Results: i=1; rspamd-9c9494d96-dd9sc; auth=pass smtp.auth=dreamhost smtp.mailfrom=paulf@quillandmouse.com X-Sender-Id: dreamhost|x-authsender|paulf@quillandmouse.com X-MC-Relay: Neutral X-MailChannels-SenderId: dreamhost|x-authsender|paulf@quillandmouse.com X-MailChannels-Auth-Id: dreamhost X-Stupid-Tart: 7d6885777931db56_1706543879940_600967212 X-MC-Loop-Signature: 1706543879940:4239981867 X-MC-Ingress-Time: 1706543879940 Received: from pdx1-sub0-mail-a230.dreamhost.com (pop.dreamhost.com [64.90.62.162]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384) by 100.109.86.202 (trex/6.9.2); Mon, 29 Jan 2024 15:57:59 +0000 Received: from yosemite.mars.lan (unknown [47.205.190.127]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: paulf@quillandmouse.com) by pdx1-sub0-mail-a230.dreamhost.com (Postfix) with ESMTPSA id 4TNtHW30tRzGK for ; Mon, 29 Jan 2024 07:57:59 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quillandmouse.com; s=dreamhost; t=1706543879; bh=UKYiBSnWmlc3nGTsl+iFvBEj/+ZjW1hZe4myySEf+QY=; h=Date:From:To:Subject:Reply-To:Content-Type; b=WVDUzLsqy1zv6Q4M5I9D1Wr+zdz5zoVNuhCslB8xX84A3tr+7UzAWXzA9J8J5xewL u2dVSTbfHmkJHxPgT85UprD1SZRAlNIi3jtR5qqAFzsO0O4WUooX/cA0JmaS6QwR4Z KtxS0H6GSzNyF4QY4FE1GbbAnYFHoX2bZcMT5x1bYRKHsshb+UIUOQMrg6eXdkoImF 7BYWpmKE4by11ubsRpp+M+UZMJShc5+x/pkNR9e1n56105pGhpwRyBhM8oYthZROI2 4k2L+5eKmVdLbscqYclEfKDzkgq9DbSFqIxOCUQKQ32SOIMI1kyJew5ou9ghfYJ7Yn sSLXjdvVkpqCg== Received: from paulf by yosemite.mars.lan with local (Exim 4.96) (envelope-from ) id 1rUU1G-00FNQG-16 for freebsd-questions@freebsd.org; Mon, 29 Jan 2024 10:57:58 -0500 Date: Mon, 29 Jan 2024 10:57:58 -0500 From: Paul M Foster To: freebsd-questions@freebsd.org Subject: Re: Enabling SSHD Message-ID: <20240129155758.2nnyjihsyiyxztib@yosemite.mars.lan> Reply-To: paulf@quillandmouse.com References: <20240129125745.fuh6nnc4dooto2oz@yosemite.mars.lan> <20240129134722.fbwrvamdf2wx4vik@yosemite.mars.lan> <4f60fad9-c5b1-46ea-bfbf-7e654bd5d3d1@FreeBSD.org> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-questions@freebsd.org X-BeenThere: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4f60fad9-c5b1-46ea-bfbf-7e654bd5d3d1@FreeBSD.org> X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.90 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; ARC_ALLOW(-1.00)[mailchannels.net:s=arc-2022:i=1]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; RWL_MAILSPIKE_EXCELLENT(-0.40)[23.83.218.253:from]; R_DKIM_ALLOW(-0.20)[quillandmouse.com:s=dreamhost]; R_SPF_ALLOW(-0.20)[+ip4:23.83.208.0/20]; MIME_GOOD(-0.10)[text/plain]; DKIM_TRACE(0.00)[quillandmouse.com:+]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[quillandmouse.com]; RCVD_TLS_LAST(0.00)[]; MIME_TRACE(0.00)[0:+]; RCPT_COUNT_ONE(0.00)[1]; MISSING_XM_UA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[23.83.218.253:from]; REPLYTO_ADDR_EQ_FROM(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; ASN(0.00)[asn:63213, ipnet:23.83.216.0/22, country:CA]; RCVD_COUNT_FIVE(0.00)[5]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; HAS_REPLYTO(0.00)[paulf@quillandmouse.com] X-Rspamd-Queue-Id: 4TNtHZ3hd2z4kdd On Mon, Jan 29, 2024 at 02:15:19PM +0000, Matthew Seaman wrote: [snip] > how to configure it. If you want password based auth for sshd, then go > ahead and edit /etc/ssh/sshd_config and/or /etc/pam.d entries, as > appropriate. Assuming I want to login as any user on the system, hacking pam shouldn't be necessary, right? I've made the following changes to the stock /etc/ssh/sshd_config: PubkeyAuthentication no PermitRootLogin yes PasswordAuthentication yes And of course, restarted the daemon each time I made a change. However, when I try to ssh in in the following ways: ssh paulf@buckaroo ssh root@buckaroo ssh buckaroo ssh 192.168.254.30 I get a flat "Permission denied (password,keyboard-interactive)". Not even an attempt to ask for a password. Clearly something's wrong, but I have no idea what. And I have googled the problem and visitied numerous sites to no avail. Paul -- Paul M. Foster Personal Blog: http://noferblatz.com Company Site: http://quillandmouse.com Software Projects: https://gitlab.com/paulmfoster