From owner-freebsd-questions@FreeBSD.ORG Mon Mar 21 17:55:40 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7BE9616A4CE for ; Mon, 21 Mar 2005 17:55:40 +0000 (GMT) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.207]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0210443D55 for ; Mon, 21 Mar 2005 17:55:40 +0000 (GMT) (envelope-from john.destefano@gmail.com) Received: by rproxy.gmail.com with SMTP id y7so989795rne for ; Mon, 21 Mar 2005 09:55:39 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=n/Wxo5H2HAobDGv33KDQn9jlkKFjR2uugLb0M3/oY4XGfzdZGgRJ6CAAShKafNHsC/tGUIMUSBviC0pvmfPe1jXU0GoC7L9uCaukipMNqtRlzpLDsWm6v/1OgE61gJwNRk9WAosgngOsgNrBnXq9QYrYoyQiM1M6pXSmjHouAnE= Received: by 10.38.65.20 with SMTP id n20mr5468225rna; Mon, 21 Mar 2005 09:55:39 -0800 (PST) Received: by 10.38.97.55 with HTTP; Mon, 21 Mar 2005 09:55:39 -0800 (PST) Message-ID: Date: Mon, 21 Mar 2005 12:55:39 -0500 From: John DeStefano To: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Subject: sshd configuration after mergemaster X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: John DeStefano List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Mar 2005 17:55:40 -0000 I've just completed a successful transition from 5.3-BETA7 to 5.3-RELEASE via the usual "makeworld" procedures. Thanks to spending some time with "mergemaster -p", all of my configuration seems to have carried over and is working perfectly, with the exception of ssh. The only difference between the original and temporary versions of sshd_config was a single line I had entered in order to prevent "root" from logging in via ssh as "root". Everything else, with the obvious exception of the config file signature, was the same. Yet I'm now getting errors when I try to ssh from any location (remote, LAN, even testing on the same terminal). If I don't do "-v", the terminal window just disappears or shows no feedback. "-v" shows "no more authentication methods to try". I then found a passage in a SSHD book that says to copy sshd.pam from the OpenSSH contrib folder in src to /etc/pam.d/ssh, and change the owner to root and permissions to 664. This certainly did something, as -v now shows quite a different message: invalid facility 'sshd' (ignored) fatal: PAM: initialisation failed I have not used PAM before. Is it now a requirement in order to use ssh? or am I going overboard to solve a simple problem? Thanks, John