Mailing List Archive by Gossamer Threads http://www.gossamer-threads.com/lists/openssh/users/ en-us (c) Gossamer Threads Inc. All rights reserved. 12 Feb 2012 11:55:40 -0800 120 75 23 http://www.gossamer-threads.com/lists/openssh/users/ http://www.gossamer-threads.com/images/lists/rss_logo.jpg First time poster. Ultimately the solution to this is probably to upgrade but I would like to get a better understanding of the mechanics behind the 02 Jun 2011 10:50:54 -0800 http://www.gossamer-threads.com/lists/openssh/users/52082   Dear all, Thanks for your replies. However I don't know why I didn't received many replies on time. For example today I saw that many replies were 27 May 2011 23:20:37 -0800 http://www.gossamer-threads.com/lists/openssh/users/52004 On Mon, May 23, 2011 at 4:35 AM, Mahmood Naderan <nt_mahmood@yahoo.com> wrote: > Hi, > I have enabled X11Forwarding in sshd_config > > mahmood@server: 27 May 2011 20:18:51 -0800 http://www.gossamer-threads.com/lists/openssh/users/52003 On 05/23/2011 04:35 AM, Mahmood Naderan wrote: > mahmood@server:~$ xclock > Error: Can't open display: Sounds to me like you need to do 'xhost +127. 27 May 2011 17:16:53 -0800 http://www.gossamer-threads.com/lists/openssh/users/52002 Is the ssh client configured to forward X11 too? On Mon, May 23, 2011 at 3:35 AM, Mahmood Naderan <nt_mahmood@yahoo.com> wrote: > Hi, > I have enab 27 May 2011 06:47:13 -0800 http://www.gossamer-threads.com/lists/openssh/users/52001 Hi, If you are on same machine then try two following commands: $ export DISPLAY=localhost:0.0 $ xhost localhost I hope this will solve issue. 27 May 2011 00:54:50 -0800 http://www.gossamer-threads.com/lists/openssh/users/52000 Hi, I have enabled X11Forwarding in sshd_config mahmood@server:~$ cat /etc/ssh/sshd_config | grep "X11*" X11Forwarding yes X11DisplayOffset 10 Howe 23 May 2011 01:35:54 -0800 http://www.gossamer-threads.com/lists/openssh/users/51998 >Try disabling KeySign and set it to no in the config files and restart SSHD. Try it again. Seems to be solved. Thanks Sharad. It is now bidirectional 29 Apr 2011 21:57:06 -0800 http://www.gossamer-threads.com/lists/openssh/users/51710 I may have missed some of the details, so I apologize if this has been covered, but if you want to do a host-based authentication, the SSH config's (c 29 Apr 2011 05:54:56 -0800 http://www.gossamer-threads.com/lists/openssh/users/51713 This is what I get   mahmood@server:~$ sudo /usr/sbin/sshd -ddd debug2: load_server_config: filename /etc/ssh/sshd_config debug2: load_server_config: 29 Apr 2011 01:38:40 -0800 http://www.gossamer-threads.com/lists/openssh/users/51709 Use the absolute path of sshd as follows: sudo /etc/ssh/sbin/sshd -ddd Please ensure that the path is correct. I don't know if ur sshd exists in / 29 Apr 2011 01:34:04 -0800 http://www.gossamer-threads.com/lists/openssh/users/51712 Sorry what do you mean?   mahmood@server:~$ sudo sshd -d sshd re-exec requires execution with an absolute path mahmood@server:~$ sudo sshd -d 3 sshd r 29 Apr 2011 00:04:51 -0800 http://www.gossamer-threads.com/lists/openssh/users/51715 Can you run debug on server as well using sshd -d. More -d's mean more debug information (you can use at the max 3 d's) :D Regards, Sharad --- On Fri 29 Apr 2011 00:01:01 -0800 http://www.gossamer-threads.com/lists/openssh/users/51708 The same thing happens with IP address     mahmood@server:~$ ssh -vvv 192.168.1.3 OpenSSH_5.3p1 Debian-3ubuntu4, OpenSSL 0.9.8k 25 Mar 2009 debug1: Re 28 Apr 2011 23:53:49 -0800 http://www.gossamer-threads.com/lists/openssh/users/51711 Hi Mahmood, This line looks out of place. Check that host name is getting resolved: get_socket_address: getnameinfo 8 failed: Name or service not kn 28 Apr 2011 23:49:49 -0800 http://www.gossamer-threads.com/lists/openssh/users/51714 On Thu, Apr 28, 2011 at 1:54 AM, Mahmood Naderan <nt_mahmood@yahoo.com> wrote: >>man ssh_config and look into PreferredAuthentications > I added this 28 Apr 2011 13:37:54 -0800 http://www.gossamer-threads.com/lists/openssh/users/51686 Dear Sharad, I am now trying to setup a hostbased ssh from server to client (previously client->server worked fine based on your help). I want it to b 28 Apr 2011 10:42:42 -0800 http://www.gossamer-threads.com/lists/openssh/users/51685 Mahmood, The files are /home/username/.ssh/known_hosts on both server and client. By FQDN, I meant host's fully qualified domain name. Following 28 Apr 2011 05:50:15 -0800 http://www.gossamer-threads.com/lists/openssh/users/51684 Can you explain exactly which file I should edit? What is FQDN? By 'hostname', Do you mean server hostname of client hostname. Should I do that on bo 28 Apr 2011 03:24:56 -0800 http://www.gossamer-threads.com/lists/openssh/users/51683 Sometimes the issue lies with hostname as well. What I mean with that is the known_hosts may have just the host name where as when the connection is e 28 Apr 2011 01:46:46 -0800 http://www.gossamer-threads.com/lists/openssh/users/51682 On Wed, Apr 27, 2011 at 1:12 AM, Mahmood Naderan <nt_mahmood@yahoo.com> wrote: >>Change the order method. Have hostbased before password > > Sorry whe 27 Apr 2011 12:08:45 -0800 http://www.gossamer-threads.com/lists/openssh/users/51681 Hi, I am trying to setup a hostbased passwrodless ssh from a client to a server using this guide http://www.ehow.com/how_7621307_set-up-hostbased-auth 25 Apr 2011 22:58:24 -0800 http://www.gossamer-threads.com/lists/openssh/users/51677 Hi Im new in the list, I have two questions: First, how can i search past messages for the list? I mean im sure this question has been asked before 23 Apr 2011 01:38:55 -0800 http://www.gossamer-threads.com/lists/openssh/users/51676 Hi, This works, but ruins the possiblity of having a normal shell on the standard port 22. Another note, if you want the possibility of letting the 20 Apr 2011 23:50:09 -0800 http://www.gossamer-threads.com/lists/openssh/users/51673 If you only ever want the user account to perform the one function, override their system shell. example: oper:x:519:519::/home/oper:/usr/local/bin/o 20 Apr 2011 08:25:42 -0800 http://www.gossamer-threads.com/lists/openssh/users/51672 Hi, I have set up a sshd_config that uses an alternate port number and ForceCommand to force the execution of a home-made service to our users. Forc 19 Apr 2011 05:23:34 -0800 http://www.gossamer-threads.com/lists/openssh/users/51663 PROBLEM SOLVED! Viewing the users (which was me from different PCs) logging in through sshd with Logwatch, I noticed that all PCs except the one in m 14 Apr 2011 09:31:55 -0800 http://www.gossamer-threads.com/lists/openssh/users/51657 Thank you all for your answers! You probably didn't receive an earlier response of mine: ========================================================== A 13 Apr 2011 03:00:13 -0800 http://www.gossamer-threads.com/lists/openssh/users/51646 hello mike, Well normally DNS resolution slows any network activity down. Even in port scanning for example using nmap its prefered to use the -n swi 13 Apr 2011 01:20:08 -0800 http://www.gossamer-threads.com/lists/openssh/users/51645 Actually the problem seems to have been sorted out. Right after placing in the sshd_config file "UseDNS no" and reloading/restarting the OpenSSH serve 12 Apr 2011 15:52:15 -0800 http://www.gossamer-threads.com/lists/openssh/users/51635 Hello!! I have a slow ssh response time and I don't know what is causing it. I'm providing you with some information and kindly requesting your help. 12 Apr 2011 09:15:52 -0800 http://www.gossamer-threads.com/lists/openssh/users/51634 Why cant you put a packet on the link up to the data transfer is finish? What is your MTU ? that is what MTU is for. Or perhaps your MTU into time uni 06 Apr 2011 07:41:02 -0800 http://www.gossamer-threads.com/lists/openssh/users/51610 Hello, i was faced same problem while designing client server based system. In that after connecting to host_B to host_A, if any host disconnected it 06 Apr 2011 06:32:51 -0800 http://www.gossamer-threads.com/lists/openssh/users/51609 Hello, Version: OpenSSH_5.3p1 Debian-3ubuntu6, OpenSSL 0.9.8k 25 Mar 2009 I would like to use socks5 with compression on a slow WAN line. I use this 06 Apr 2011 05:35:31 -0800 http://www.gossamer-threads.com/lists/openssh/users/51608 On Sunday, April 03, 2011 12:17:55 pm Lamont Granquist wrote: > you can already use fail2ban to accomplish this kind of thing. > > the original idea 05 Apr 2011 20:30:24 -0800 http://www.gossamer-threads.com/lists/openssh/users/51607 Hello, I am working on an application that needs to be able to rapidly detect a lost connection between an ssh client and ssh server. I am using ss 05 Apr 2011 08:48:44 -0800 http://www.gossamer-threads.com/lists/openssh/users/51595 you can already use fail2ban to accomplish this kind of thing. the original idea i think is somewhat terrible in a multi-user enterprise-y kind of e 03 Apr 2011 12:17:55 -0800 http://www.gossamer-threads.com/lists/openssh/users/51593 Why not utilize OpenVPN to tunnel to the network and allow only local connections made to the ssh server? It solves all my problems. On Apr 2, 2011, 02 Apr 2011 15:37:11 -0800 http://www.gossamer-threads.com/lists/openssh/users/51592 On Thu, Mar 31, 2011 at 03:20:38PM -0300, Christian Grunfeld wrote: > This will not disturb a normal human login with a couple failures but > makes a 02 Apr 2011 04:57:13 -0800 http://www.gossamer-threads.com/lists/openssh/users/51594 1.) Great idea. 2.) This could be a massive impediment to legitimate automated connections. Part of a process that would make large numbers of conne 31 Mar 2011 12:39:50 -0800 http://www.gossamer-threads.com/lists/openssh/users/51587 --- On Wed, 3/30/11, nagygabor88 <nagygabor88@zoho.com> wrote: > From: nagygabor88 <nagygabor88@zoho.com> > Subject: a GOOD idea to harden OpenSSH! > 31 Mar 2011 11:24:20 -0800 http://www.gossamer-threads.com/lists/openssh/users/51586 hi, a couple of years ago I submit an idea like yours ! My idea was that ssh server waits up to ...say 2^N seconds between failed logins to show agai 31 Mar 2011 11:20:38 -0800 http://www.gossamer-threads.com/lists/openssh/users/51585 2011/3/31 Petr Cerny <pcerny@suse.cz>: > You might be interested in > https://bugzilla.mindrot.org/show_bug.cgi?id=1663 , which, AFAIU, is a > general 31 Mar 2011 02:46:04 -0800 http://www.gossamer-threads.com/lists/openssh/users/51574 StanisÅ‚aw Pitucha wrote: > 2011/3/29 Thompson, Jimi <JimiT@mail.cox.smu.edu>: >> What about using ldap? > > Is there a way to do that without a patc 31 Mar 2011 01:22:18 -0800 http://www.gossamer-threads.com/lists/openssh/users/51575 I'm writing here, because the ssh dev list says: Mail Delivery Status Notification (Delay) [Status: Error, Address: <openssh-unix-dev@mindrot.org>, 30 Mar 2011 12:19:57 -0800 http://www.gossamer-threads.com/lists/openssh/users/51573 Hi Clemens, There are various scenarios for decreased latency. 1. Kindly check the host entry if dbserver is internal and not communicating to Intern 29 Mar 2011 23:32:07 -0800 http://www.gossamer-threads.com/lists/openssh/users/51570 I have a bunch of CentOS 5.x boxes where ssh will occasionally become non-responsive with the message "fatal: Privilege separation user sshd does not 29 Mar 2011 05:50:43 -0800 http://www.gossamer-threads.com/lists/openssh/users/51568 2011/3/29 Thompson, Jimi <JimiT@mail.cox.smu.edu>: > What about using ldap? Is there a way to do that without a patched SSH? (I mean the public keys 29 Mar 2011 02:16:23 -0800 http://www.gossamer-threads.com/lists/openssh/users/51572 2011/3/29 Kushal Kumaran <kushal.kumaran@gmail.com>: > You might be able to write a PAM module for your customized > authentication needs. From what 29 Mar 2011 02:14:38 -0800 http://www.gossamer-threads.com/lists/openssh/users/51569 2011/3/28 StanisÅ‚aw Pitucha <viraptor@gmail.com>: > Hi all, > > I'm looking for a way to allow a lot of users / public keys to be used > on a server 28 Mar 2011 18:33:01 -0800 http://www.gossamer-threads.com/lists/openssh/users/51571 Hi all, I'm looking for a way to allow a lot of users / public keys to be used on a server via sshd and I'd like to manage them easily in some reposi 28 Mar 2011 02:41:05 -0800 http://www.gossamer-threads.com/lists/openssh/users/51561 Hi, I experience a very strange problem, when using the jdbc driver with ssh's local port forwarding: ssh -v -L 4321:dbserver:5432 user@dbserver SEL 22 Mar 2011 06:35:08 -0800 http://www.gossamer-threads.com/lists/openssh/users/51536 Hi, One thing to consider is the alert message that could got the client (depend the setting) when accessing different host/key with same IPs. Never 13 Mar 2011 15:21:57 -0800 http://www.gossamer-threads.com/lists/openssh/users/51500 [. Apologies if you receive multiple copies of this announcement. Please pass it on to your colleagues and students who might be interested in con 11 Mar 2011 17:27:50 -0800 http://www.gossamer-threads.com/lists/openssh/users/51497 Hi, any suggestions/pointers what are the best practices in load balancing ssh ? I googled quite heavy for it and found a lot of general purpose load 11 Mar 2011 15:57:25 -0800 http://www.gossamer-threads.com/lists/openssh/users/51495 Roberto, There's nothing in the sftp man page. My preference is to use rsync if you want to retain permissions. Use the -o and -g flags, or, -a but b 11 Mar 2011 10:35:13 -0800 http://www.gossamer-threads.com/lists/openssh/users/51496 Hi, when making a sftp file transfer, overwriting an existing file, is there any way to preserve the permissions of the file? So, if the file had p 11 Mar 2011 04:10:34 -0800 http://www.gossamer-threads.com/lists/openssh/users/51494 In my perspective, its not a security issue, because, user will have access to root folder of chrooted environment and it doesn't let the user go ou 28 Feb 2011 02:18:21 -0800 http://www.gossamer-threads.com/lists/openssh/users/51453 Hi Is it possible to configure the openssh (5.8p1) daemon to check both PubkeyAuthentication and PasswordAuthentication before accepting the user? An 28 Feb 2011 02:14:29 -0800 http://www.gossamer-threads.com/lists/openssh/users/51443 There is no possibility to implement this mechanism ? ----- Original Message ----- From: "Dennis Nasarov" <nasarov@gmail.com> To: "Riccardo Castella 27 Feb 2011 10:58:04 -0800 http://www.gossamer-threads.com/lists/openssh/users/51452 On Feb 27, 2011, at 5:21 PM, Riccardo Castellani wrote: > I installed openssh-5.6p1 into my Fedora server and I run this service into chroot mode. > 27 Feb 2011 09:45:10 -0800 http://www.gossamer-threads.com/lists/openssh/users/51451 I installed openssh-5.6p1 into my Fedora server and I run this service into chroot mode. I think to have found out a BUG into this package, specifica 27 Feb 2011 08:21:55 -0800 http://www.gossamer-threads.com/lists/openssh/users/51439 I've posted a draft of a book on using OpenSSH on Wikibooks: http://en.wikibooks.org/wiki/OpenSSH Regards /Lars Nooden 27 Feb 2011 03:09:53 -0800 http://www.gossamer-threads.com/lists/openssh/users/51440 Dear Team        I am using privilege separation in openssh . I am to get the logs generated by monitor process , but not able to get the logs gener 16 Feb 2011 20:43:15 -0800 http://www.gossamer-threads.com/lists/openssh/users/51363 Hey all, I'm wondering if anyone has any links or scripts for generating zone files with the appropriate SSHFPs. In fact, I'm kinda curious what the 10 Feb 2011 15:40:41 -0800 http://www.gossamer-threads.com/lists/openssh/users/51323 For your hosts where you want to connect conditionally over jumphost your can use a proxy command that points to a shell script like: ProxyCommand my 09 Feb 2011 02:42:54 -0800 http://www.gossamer-threads.com/lists/openssh/users/51308 On Tue, Feb 8, 2011 at 10:16 AM, Asif Iqbal <vadud3@gmail.com> wrote: > On Tue, Feb 8, 2011 at 10:08 AM, Asif Iqbal <vadud3@gmail.com> wrote: >> On Tu 08 Feb 2011 12:18:57 -0800 http://www.gossamer-threads.com/lists/openssh/users/51307 On Tue, Feb 8, 2011 at 10:08 AM, Asif Iqbal <vadud3@gmail.com> wrote: > On Tue, Feb 8, 2011 at 5:24 AM, Igor Bukanov <igor@mir2.org> wrote: >> On 8 Fe 08 Feb 2011 07:16:35 -0800 http://www.gossamer-threads.com/lists/openssh/users/51288 On Tue, Feb 8, 2011 at 5:24 AM, Igor Bukanov <igor@mir2.org> wrote: > On 8 February 2011 04:20, Asif Iqbal <vadud3@gmail.com> wrote: >> Is it possible 08 Feb 2011 07:08:39 -0800 http://www.gossamer-threads.com/lists/openssh/users/51287 On Tue, Feb 8, 2011 at 9:51 AM, Asif Iqbal <vadud3@gmail.com> wrote: > On Tue, Feb 8, 2011 at 9:35 AM, Igor Bukanov <igor@mir2.org> wrote: >> On 8 Feb 08 Feb 2011 06:53:23 -0800 http://www.gossamer-threads.com/lists/openssh/users/51297 On Tue, Feb 8, 2011 at 9:35 AM, Igor Bukanov <igor@mir2.org> wrote: > On 8 February 2011 11:24, Igor Bukanov <igor@mir2.org> wrote: >> On 8 February 2 08 Feb 2011 06:51:25 -0800 http://www.gossamer-threads.com/lists/openssh/users/51286 On 8 February 2011 11:24, Igor Bukanov <igor@mir2.org> wrote: > On 8 February 2011 04:20, Asif Iqbal <vadud3@gmail.com> wrote: >> Is it possible to ma 08 Feb 2011 06:35:19 -0800 http://www.gossamer-threads.com/lists/openssh/users/51285 On 8 February 2011 04:20, Asif Iqbal <vadud3@gmail.com> wrote: > Is it possible to make it work as default for all hosts except the jumphost? > > I tr 08 Feb 2011 02:24:09 -0800 http://www.gossamer-threads.com/lists/openssh/users/51284 On Mon, Feb 7, 2011 at 9:08 PM, Igor Bukanov <igor@mir2.org> wrote: > On 5 February 2011 19:10, Asif Iqbal <vadud3@gmail.com> wrote: >> # cat ~/.ssh/c 07 Feb 2011 19:20:51 -0800 http://www.gossamer-threads.com/lists/openssh/users/51289 On 5 February 2011 19:10, Asif Iqbal <vadud3@gmail.com> wrote: > # cat ~/.ssh/config ... > host remotehost >  hostname remotehost.example.net >  Pro 07 Feb 2011 18:08:57 -0800 http://www.gossamer-threads.com/lists/openssh/users/51283 Hi, for the record, I was told to try -4 on the command line. Indeed, that quiets the "Address already in use" message. Maybe this is useful to someon 07 Feb 2011 09:44:14 -0800 http://www.gossamer-threads.com/lists/openssh/users/51268 I turn on debugging in sshd_config and that way the key fingerprints are recorded when people log in. I move the logging out of messages though be 07 Feb 2011 09:40:52 -0800 http://www.gossamer-threads.com/lists/openssh/users/51269 Hi, I am trying to connect to remote host using the session that is enabled my control master. It works fine if I run it from command line. # cat ~/ 05 Feb 2011 10:10:44 -0800 http://www.gossamer-threads.com/lists/openssh/users/51267 On FreeBSD 7.x (and earlier), I'd see this if the number of groups "user" was in exceeded NGROUPS. FreeBSD 8.x changed this (NGROUPS increased, among 04 Feb 2011 16:00:14 -0800 http://www.gossamer-threads.com/lists/openssh/users/51266 We are running OpenSSH versions 4.3 and 5.5 on a mixture of CentOS 5, Debian and Fedora 14 systems. Can OpenSSH log which public key, as listed in th 04 Feb 2011 11:40:44 -0800 http://www.gossamer-threads.com/lists/openssh/users/51265 Hello, On 3 February 2011 07:48, Darren Tucker <dtucker@zip.com.au> wrote: > On 3/02/11 12:20 AM, Alex John wrote: >> >> Hello, I'm having trouble co 04 Feb 2011 00:18:27 -0800 http://www.gossamer-threads.com/lists/openssh/users/51241 FYI - ssh version is: OpenSSH_5.4p1 FreeBSD-20100308, OpenSSL 0.9.8n 24 Mar 2010 And now I am using my own smtp not Gmail's blacklisted ones hopeful 02 Feb 2011 19:35:03 -0800 http://www.gossamer-threads.com/lists/openssh/users/51220 On 3/02/11 12:20 AM, Alex John wrote: > Hello, I'm having trouble connecting to any server outside my local > network since like a week. I could do it 02 Feb 2011 15:48:37 -0800 http://www.gossamer-threads.com/lists/openssh/users/51219 Alex, You're missing "debug1: Authentication succeeded (publickey)." The absence of this line suggests it's not a network problem, neither is it like 02 Feb 2011 11:45:06 -0800 http://www.gossamer-threads.com/lists/openssh/users/51217 Remove /home/alex/.ssh/Id_rsa* Enjoy Am 02.02.2011 um 14:20 schrieb Alex John <alex@archeleus.com>: > Hello, I'm having trouble connecting to any se 02 Feb 2011 09:11:56 -0800 http://www.gossamer-threads.com/lists/openssh/users/51216 It seems to me that the key is bad. Can you generate a new one with ssh-keygen and try? On 02/02/2011 07:20 AM, Alex John wrote: > Hello, I'm having 02 Feb 2011 08:44:52 -0800 http://www.gossamer-threads.com/lists/openssh/users/51215 Hello, I'm having trouble connecting to any server outside my local network since like a week. I could do it without any problems before that. Here's 02 Feb 2011 05:20:42 -0800 http://www.gossamer-threads.com/lists/openssh/users/51205 Hi, I'm trying to use ssh for port forwarding. So far ssh -L has worked just fine for that purpose. Now I want to bind the port to all interfaces, so 28 Jan 2011 08:38:49 -0800 http://www.gossamer-threads.com/lists/openssh/users/51182 That's an interesting idea, thx. I'll forward the suggestion to the other admin. jake On Jan 22, 2011, at 6:18 PM, Felipe Martins wrote: > Jake, > 24 Jan 2011 09:54:25 -0800 http://www.gossamer-threads.com/lists/openssh/users/51142 Jake, For non technical users you can use ssh as a CA, you can create to each user a public key inside a USB Pendrive and them configure their 22 Jan 2011 09:18:00 -0800 http://www.gossamer-threads.com/lists/openssh/users/51137 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Oliver, oh, sure, I didn't exactly get that. I wil ltry to reproduce that ... - -nik Am 22.01.201 22 Jan 2011 02:50:41 -0800 http://www.gossamer-threads.com/lists/openssh/users/51136 Hi Dominik, Thanks for your reply, but I'm not sure I've properly explained what I mean. In essence, from what I can see, it isn't just executing the 22 Jan 2011 02:27:58 -0800 http://www.gossamer-threads.com/lists/openssh/users/51139 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Oliver, this is essentially the point of the forced commands. SSH will execute them, no matter what 22 Jan 2011 02:24:31 -0800 http://www.gossamer-threads.com/lists/openssh/users/51138 2011/1/20 Christophe Brocas (forum) <christophe.brocas@cnamts.fr> > For the different pids, it is hard for me to say ... a process child ? Yes, I th 20 Jan 2011 22:53:30 -0800 http://www.gossamer-threads.com/lists/openssh/users/50986 Hi there, I am having a very strange problem with SSH. Essentially, I'm using forced commands to restrict access based on public key (there are aroun 20 Jan 2011 15:49:57 -0800 http://www.gossamer-threads.com/lists/openssh/users/50985 Le 19/01/2011 23:39, Gustavo Saito a écrit : > The user and password exist, but aren't allowed to remote log in > Right Gustavo :) After more config 20 Jan 2011 00:30:01 -0800 http://www.gossamer-threads.com/lists/openssh/users/50979 And again, to the list. 2011/1/19 Christophe Brocas (forum) <christophe.brocas@cnamts.fr>: > But I have recently found these records : > Dec 30 09:18 19 Jan 2011 13:31:44 -0800 http://www.gossamer-threads.com/lists/openssh/users/50970 Thanks for all advises. I actually don't need a full ssh implementation. The thing a wanted was a simple password-authentification for non-technical u 19 Jan 2011 09:49:03 -0800 http://www.gossamer-threads.com/lists/openssh/users/50969 Hello, Disclamer : I apologize by advance to ask for a newbie question :/ I do some analyzing tasks on openssh generated log messages. Until then, 19 Jan 2011 04:50:34 -0800 http://www.gossamer-threads.com/lists/openssh/users/50968 When you try to connect to a SSH Server it exchanges a session key, you would have to give that to the server before authentication. Like Salva said, 17 Jan 2011 11:39:52 -0800 http://www.gossamer-threads.com/lists/openssh/users/50959