From owner-freebsd-stable  Fri Jun  8 21: 0:54 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from smtp10.atl.mindspring.net (smtp10.atl.mindspring.net [207.69.200.246])
	by hub.freebsd.org (Postfix) with ESMTP id 3E3D337B401
	for <freebsd-stable@freebsd.org>; Fri,  8 Jun 2001 21:00:49 -0700 (PDT)
	(envelope-from mvh@ix.netcom.com)
Received: from netcom1.netcom.com (user-2iniu37.dialup.mindspring.com [165.121.120.103])
	by smtp10.atl.mindspring.net (8.9.3/8.8.5) with ESMTP id AAA21834;
	Sat, 9 Jun 2001 00:00:25 -0400 (EDT)
Received: by netcom1.netcom.com (Postfix, from userid 1000)
	id 3BE0D1141EC; Fri,  8 Jun 2001 21:00:09 -0700 (PDT)
From: Mike Harding <mvh@ix.netcom.com>
To: chris@shenton.org
Cc: patrick@netzuno.com, freebsd-stable@freebsd.org
In-reply-to: <87ofryzk1i.fsf@thanatos.shenton.org> (message from Chris Shenton
	on 08 Jun 2001 18:25:13 -0400)
Subject: Re: Two pam/ssh questions.
References: <HJEEKLMFLKEOKHOKNPBMEEAJCPAA.patrick@netzuno.com> <87ofryzk1i.fsf@thanatos.shenton.org>
Message-Id: <20010609040009.3BE0D1141EC@netcom1.netcom.com>
Date: Fri,  8 Jun 2001 21:00:09 -0700 (PDT)
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG


Yep.  I just got locked out of a remote box I upgraded - I only use
RSA/DSA mode and it bounces me.  I did mergemaster - something is
broken... like maybe you don't need PAM when you have an RSA key?

- Mike H.

   Cc: <freebsd-stable@freebsd.org>
   From: Chris Shenton <chris@shenton.org>
   Date: 08 Jun 2001 18:25:13 -0400
   User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7
   Content-Type: text/plain; charset=us-ascii
   Sender: owner-freebsd-stable@FreeBSD.ORG
   List-ID: <freebsd-stable.FreeBSD.ORG>
   List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
   List-Help: <mailto:majordomo?subject=help> (List Instructions)
   List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-stable>
   List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-stable>
   X-Loop: FreeBSD.ORG
   Precedence: bulk

   "Patrick Bihan-Faou" <patrick@netzuno.com> writes:

   > > > Second, I 'cvsup'd a couple of days ago, did a 'make world' last night
   > > > and now am getting "sshd[NNN]: PAM setcred failed[6]: Permission denied"
   > > > errors whenever I tried to ssh in from the outside.
   > 
   > I am running in the same problem. In my setup, this occurs only when I am
   > using RSA or DSA authentication (instead of clear-text password).

   Dang. I *just* posted a query to -questions on exactly this, with
   4.3-STABLE built from cvsup a few minutes ago, pam.conf updated via
   mergemaster.

   I removed my ~/.ssh/authorized_keys on the server and was able to
   login instead of getting the PAM setcred problem on the server.

   At least I'm running again. But would be nice to have the RSA auth
   working so I don't have to ship passwords around.

   Thanks for the tip. I'll follow changes to pam more closely.

   To Unsubscribe: send mail to majordomo@FreeBSD.org
   with "unsubscribe freebsd-stable" in the body of the message


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message