| All Forums |
Register |
Login |
Search |
Subscriptions |
My Profile |
Inbox |
| Tool Warehouse |
FAQs |
Resources |
Help |
Member List |
Address Book |
Logout |
|
|
Novice unix admin and ssh question
|
Logged in as: Guest |
| Users viewing this topic: none |
|
Login  |
|
|
 Novice unix admin and ssh question - Mar. 30, '05, 10:30:08 AM
|
|
|
zaphod_fl
Posts: 12
Joined: Mar. 29, '05,
Status: offline
|
I give... I have been fighting with this since I installed it...
I cannot log into ssh remotely. I know I am doing something wrong. I have installed the package using pkg_add as a local administrator. Deleted the keys and re-installed.
First Question: How do I get a log file for this thing?
Second Question: I cannot seem to log in as some users. It asks for a password, but won't accept the password that I know works when I use Remote Terminal.
Third Question: When I do log in it gives the following:
ccbt:sadmin >ssh rjb28@wm-flor-ap194
rjb28's password:
Authentication successful.
and then comes back to the prompt on the Solaris machine. I have also tried the Techtia client and it seems to authenticate, then does not give a terminal window.
_____________________________
To Err is Human but it takes a computer to really screw things up.
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 10:56:51 AM
|
|
|
Rodney
Posts: 3728
Joined: Jul. 9, '02,
From: /Tools lab
Status: offline
|
> First Question: How do I get a log file for this thing?
Openssh is dependent on the syslogd package. This is a newer,
more secure version of syslogd than what ships with SFU/Interix. All
logging (as with other Unix systems) goes to this daemon. There are manual pages
that you can read as well. Please read the README in /var/adm/log for
information about log data collection/filtering.
> Second Question: I cannot seem to log in as some users. It asks for a password,
> but won't accept the password that I know works when I use Remote Terminal.
We need some details about the machine in question:
- which version of Windows/NT is running (including SP's) ?
- is it running Terminal Server ?
- what is the default principal domain for the machine ? (run pdomain)
- what domain is the user part of that is attempting to login ?
> Third Question: When I do log in it gives the following:
This may relate to another Forum thread (because of the Solaris part).
But let's work on the other questions first since addressing that may
clear up other issues you are experiencing.
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 11:01:50 AM
|
|
|
zaphod_fl
Posts: 12
Joined: Mar. 29, '05,
Status: offline
|
quote:
ORIGINAL: Rodney
> First Question: How do I get a log file for this thing?
Openssh is dependent on the syslogd package. This is a newer,
more secure version of syslogd than what ships with SFU/Interix. All
logging (as with other Unix systems) goes to this daemon. There are manual pages
that you can read as well. Please read the README in /var/adm/log for
information about log data collection/filtering.
Thank you
quote:
ORIGINAL: Rodney
> Second Question: I cannot seem to log in as some users. It asks for a password,
> but won't accept the password that I know works when I use Remote Terminal.
We need some details about the machine in question:
- which version of Windows/NT is running (including SP's) ?
- is it running Terminal Server ?
- what is the default principal domain for the machine ? (run pdomain)
- what domain is the user part of that is attempting to login ?
Windows 2000 Advanced Server Service Pack 4
Yes, it is running Terminal Server
pdomain output: WDW
User is part of the WDW domain.
I would also like to use a local machine user id as well.
quote:
ORIGINAL: Rodney
> Third Question: When I do log in it gives the following:
This may relate to another Forum thread (because of the Solaris part).
But let's work on the other questions first since addressing that may
clear up other issues you are experiencing.
I read up on that and could not figure it out...
_____________________________
To Err is Human but it takes a computer to really screw things up.
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 11:17:47 AM
|
|
|
zaphod_fl
Posts: 12
Joined: Mar. 29, '05,
Status: offline
|
Okay, I have uncommented out the syslog.conf file entries and restarted syslogd. I still don't get anything. Do I need to add a 'debug' type entry specificly for sshd?
notice;*.info;authpriv,ftp.none;kern.debug;mail.crit /var/adm/log/messages
mail.* /var/adm/log/mail
ftp.* /var/adm/log/ftp
# -- NOTE: the following files (messages, lpr, mail, ..)
# -- have already been created during the installation of Interix.
# -- Uncomment out the following entries to which you want syslogd
# -- to write information.
# lpr.info /var/adm/log/lpr
# uucp.info /var/adm/log/uucp
# news.* /var/adm/log/news
daemon.* /var/adm/log/daemon
# -- The authpriv log file should be restricted access; these
# -- messages shouldn't go to terminals or publically-readable
# -- files.
#
# authpriv.* /var/adm/log/secure
#
# The following are commented out for the Administrator to turn on
# if desired. As mentioned on the man page, user names are to be prefixed
# with the name of the domain. Since we don't know yours (and it won't
# always be that domainname equals machinename) "<DOMAIN>" should be
# replaced with the domainname of your choice.
#
*.emerg *
*.alert <WDW>+Administrator
*.err,authpriv.none <WDW>+Administrator
*.notice;auth.debug <WDW>+Administrator
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 11:34:33 AM
|
|
|
Rodney
Posts: 3728
Joined: Jul. 9, '02,
From: /Tools lab
Status: offline
|
Okay, so the machine itself is a Server but is not the Domain server, right?
Openssh is currently set for local-machine login success.
The way the security token is created restricts it at the initial part of the
login to not have access to network drives. This can be worked-around by then
running login to generate a new token.
Try a user local to the machine. Specify the user as "MACHINE+username" to
ssh. (e.g. "ssh -l bird+harry bird" where 'bird' is the machine).
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 11:43:08 AM
|
|
|
Rodney
Posts: 3728
Joined: Jul. 9, '02,
From: /Tools lab
Status: offline
|
> Okay, I have uncommented out the syslog.conf file entries and restarted syslogd. I still don't get anything. Do I need to add a 'debug' type entry specificly for sshd?
Generally speaking, turning on syslogd and then starting openssh will result
in a log entry showing the startup of the daemon (in the file /var/adm/log/messages).
When syslogd was restarted, you did this as which user? It should be the local Administrator.
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 11:53:05 AM
|
|
|
zaphod_fl
Posts: 12
Joined: Mar. 29, '05,
Status: offline
|
quote:
ORIGINAL: Rodney
Okay, so the machine itself is a Server but is not the Domain server, right?
Openssh is currently set for local-machine login success.
The way the security token is created restricts it at the initial part of the
login to not have access to network drives. This can be worked-around by then
running login to generate a new token.
Try a user local to the machine. Specify the user as "MACHINE+username" to
ssh. (e.g. "ssh -l bird+harry bird" where 'bird' is the machine).
Okay, that worked for the local user...
where / how do I use the login command above?
Then, what do I need to do to get it to log in without a password?
Thank you!
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 12:14:30 PM
|
|
|
zaphod_fl
Posts: 12
Joined: Mar. 29, '05,
Status: offline
|
I got it... I logged in with the local user, then did a login and it cleared up the security issue.
Now, How do I set the local user to have /export/home/sadmin as it's $HOME directory?
|
|
|
|
|
RE: Novice unix admin and ssh question - Mar. 30, '05, 12:21:42 PM
|
|
|
zaphod_fl
Posts: 12
Joined: Mar. 29, '05,
Status: offline
|
Never mind on the Home directory thing... I found it in this thread
http://www.interopsystems.com/tools/forum/tm.aspx?m=3214&mpage=1&key=%24HOMEಎ
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
|
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
|
|
Printable Version
