From owner-freebsd-questions@FreeBSD.ORG Mon Jan 31 11:30:29 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 44DE716A4CE for ; Mon, 31 Jan 2005 11:30:29 +0000 (GMT) Received: from jupiter.picknowl.com.au (jupiter.picknowl.com.au [203.87.94.38]) by mx1.FreeBSD.org (Postfix) with ESMTP id 451D343D3F for ; Mon, 31 Jan 2005 11:30:28 +0000 (GMT) (envelope-from imoore@picknowl.com.au) Received: from daemon.foo.lan (adsl-176-70.swiftdsl.com.au [218.214.176.70]) by jupiter.picknowl.com.au (Postfix) with ESMTP id ECE349B0E2 for ; Mon, 31 Jan 2005 22:00:26 +1030 (CST) From: Ian Moore To: freebsd-questions@freebsd.org Date: Mon, 31 Jan 2005 22:00:18 +1030 User-Agent: KMail/1.7.2 References: <200501191833.37349.imoore@picknowl.com.au> <200501241912.20598.imoore@picknowl.com.au> In-Reply-To: <200501241912.20598.imoore@picknowl.com.au> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1131762.XZrhFhhlVO"; protocol="application/pgp-signature"; micalg=pgp-sha1 Content-Transfer-Encoding: 7bit Message-Id: <200501312200.25611.imoore@picknowl.com.au> Subject: Re: SSH suddenly giving pam error for existing user X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 31 Jan 2005 11:30:29 -0000 --nextPart1131762.XZrhFhhlVO Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline On Mon, 24 Jan 2005 19:12, Ian Moore wrote: > On Wed, 19 Jan 2005 18:33, Ian Moore wrote: > > Hi, > > I can normally ssh to my home computer (using password authentication), > > but today it's stopped working. The last time I did it was about 9 days > > ago from work & it worked then. > > The console log shows: > > Jan 19 17:04:25 daemon sshd[61084]: error: PAM: authentication error for > > imoore from firewall. > > > > I've tried connecting from 2 different remote hosts, one at work & > > another elsewhere - same result. > > > > When I got home today, I tried creating a new user & then ssh'ed to a > > remote machine & ssh'ed back to mine with the new username. > > I was able to log in OK as the new user. > > > > I then changed the password for my normal user & tried to ssh back with > > the new password, but I still can't login. > > > > I'm running 5.3-RELEASE-p2. I have upgraded a few ports since ssh last > > worked - openoffice and a few bit & pieces - I'm not sure what exactly. > > I haven't altered my ipfw config in that time, nor have I upgraded the > > base system or kernel. > > > > Can anyone think what might have caused this? > > > > Cheers, > > Hi, I'm still having trouble with this. > I figured I should be able to fix it by renaming my home directory, then > use rmuser to delete my account & create a new account with the same uid. > > Well I figured wrongly! I still couldn't ssh to my new account. > > Then I tried deleting that account & creating a new one with the same name > but a different UID - still no joy. I just get "error: PAM: authentication > error for imoore" every time. > > So why does it work for new user with a different username? Is PAM somehow > keeping the old password somewhere? > > Cheers, Just for the record, I found the problem - I'd added=20 =2D:wheel:ALL EXCEPT LOCAL to /etc/login.access =2D-=20 Ian GPG Key: http://homepages.picknowl.com.au/imoore/imoore.asc --nextPart1131762.XZrhFhhlVO Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQBB/hbRfITqkXhImmIRAhAuAJ9uXaTZBhKH8thtKebon/RrM22hJgCeKhL9 6hruDhVVPjWFJEE2Y5DjIcE= =dW6g -----END PGP SIGNATURE----- --nextPart1131762.XZrhFhhlVO--