[OpenIndiana-discuss] remote root login failing .. even after edits to sshd_config

Andreas Wacknitz A.Wacknitz at gmx.de
Thu Nov 21 06:10:42 UTC 2024 

Am 21.11.24 um 00:32 schrieb Harry Putnam:
>
> On Wed, Nov 20, 2024, at 16:58, Christian Meier wrote:
>> Hi
>>
>> I think root user is a role as it is default on OI/Solaris
>>
>> # grep root /etc/user_attr
> grep root /etc/user_attr
> root::::type=normal;auths=solaris.*,solaris.grant;profiles=All;lock_after_retries=no;clearance=admin_high;min_label=admin_low;audit_flags=lo\:no
>
>> As long as root-user is a role login is permitted
> That line above is a bit confusing.  Did you mean to say "is NOT a role"
>
> But even if that was what you meant it appears something more is going on since I cannot remotely login over ssh as my user either..
>
> Further, if it was related to the setting shown in user_attr above,  My user would not be able to login to root like:
>      ssh root at localhost either.   And user can do that.
>
> I'm flat  out of ideas to debug this.
Add another v to the parameters when you call ssh, eg. ssh -vvv <hostname>
With three v's you'll get more information, eg. when you don't have the
correct private key.
A problem I had in the past was that ssh tries to use every key it finds
locally but sshd allows only for a
small number of retries. So it's bad if the correct key is the 7th in
your file system but sshd allows only for five tries.


> I did see something in another thread about changes in openssh that were causing problems... maybe this is related.
> But more likely some kind of boneheadedness on my part.
> Thanks for your efforts
>
>> On 20/11/2024 21:57, hput wrote:
>>> I'm not understanding why I am unable to login remotely to IO vm via
>>> ssh.
>>>
>>> Far as I rememeber the only requirements to make that possible are to
>>> add "PermitRootLogin yes" to /etc/ssh/sshd_config and restart the ssh
>>> server.
>>>
>>> Am I forgetting something else that is needed?
>>>
>>> I've done these things in this order:
>>>
>>> add PermitRootLogin yes to authentication section of /ssh/sshd_config
>>>
>>> svcadm restart ssh
>>>
>>> Note: Also tried svcadm disable ssh
>>>                    svcadm enable -rst ssh
>>>
>>> But when tried from remote host I get:
>>>
>>> root # ssh -vv  root at oi
>>> OpenSSH_8.9p1 Ubuntu-3ubuntu0.10, OpenSSL 3.0.2 15 Mar 2022
>>> debug1: Reading configuration data /etc/ssh/ssh_config
>>> debug1: /etc/ssh/ssh_config line 21: Applying options for *
>>> debug2: resolving "oi" port 22
>>> debug1: Connecting to oi [192.168.1.220] port 22.
>>> debug1: connect to address 192.168.1.220 port 22: Connection refused
>>> ssh: connect to host oi port 22: Connection refused
>>>
>>>
>>> However logged in as my user on OI I can run:
>>>
>>> ssh root at localhost and it works as expected.
>>>
>>> What am I missing?
>>>
>>>
>>> _______________________________________________
>>> openindiana-discuss mailing list
>>> openindiana-discuss at openindiana.org
>>> https://openindiana.org/mailman/listinfo/openindiana-discuss
> _______________________________________________
> openindiana-discuss mailing list
> openindiana-discuss at openindiana.org
> https://openindiana.org/mailman/listinfo/openindiana-discuss

More information about the openindiana-discuss mailing list