public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-user] Newly created user can't ssh in but others can?
@ 2006-11-17 20:02 Daevid Vincent
  2006-11-17 20:16 ` Nangus Garba
                   ` (3 more replies)
  0 siblings, 4 replies; 6+ messages in thread
From: Daevid Vincent @ 2006-11-17 20:02 UTC (permalink / raw
  To: gentoo-user

I have had my server for several years, I haven't added a new user in
probably 6 months or more. I tried to add one last night and all seemed
fine. However it can't login via ssh (not at a console, so I don't know
about that way) but existing accounts can. 

I've tried changing the passwd to 'foo' (just something simple) and I keep
getting the "Password:" prompt over and over. But if I ssh in to say, my
account, it works fine.

Ideas?

/home looks like:

drwxr-xr-x  4 joe    users  4096 Nov 17 11:42 joe
drwx--x--x 29 daevid users  4096 Nov 17 02:08 daevid 

daevid home # passwd joe
New UNIX password: 'foo'
BAD PASSWORD: it is WAY too short
Retype new UNIX password: 'foo'
passwd: password updated successfully

daevid home # ssh joe@localhost
Password: 'foo'
Password: 'foo'
...

daevid home # ssh daevid@localhost
Password: 'secret'
Last login: Fri Nov 17 11:46:06 2006 from daevid.com
daevid@daevid ~ $ 


ÐÆ5ÏÐ 


-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user] Newly created user can't ssh in but others can?
  2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
@ 2006-11-17 20:16 ` Nangus Garba
  2006-11-17 20:20 ` Flophouse Joe
                   ` (2 subsequent siblings)
  3 siblings, 0 replies; 6+ messages in thread
From: Nangus Garba @ 2006-11-17 20:16 UTC (permalink / raw
  To: gentoo-user

[-- Attachment #1: Type: text/plain, Size: 117 bytes --]

Is  the user in the group that is allowed to ssh in? I think it is the sshd
group or something like that.

code affe

[-- Attachment #2: Type: text/html, Size: 132 bytes --]

^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user] Newly created user can't ssh in but others can?
  2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
  2006-11-17 20:16 ` Nangus Garba
@ 2006-11-17 20:20 ` Flophouse Joe
  2006-11-17 20:22 ` Richard Fish
  2006-11-17 21:04 ` Michael Sullivan
  3 siblings, 0 replies; 6+ messages in thread
From: Flophouse Joe @ 2006-11-17 20:20 UTC (permalink / raw
  To: gentoo-user

On Fri, 17 Nov 2006, Daevid Vincent wrote:

> I have had my server for several years, I haven't added a new user in
> probably 6 months or more. I tried to add one last night and all seemed
> fine. However it can't login via ssh (not at a console, so I don't know
> about that way) but existing accounts can.

It could be a bunch of things, so you're going to have to brainstorm.

Here are some quick ideas off the top of my head:

- Does the new user have a valid shell?

- If the new user's shell is valid and different from other users'
 	shells, then is the new user's shell listed in /etc/shells ?

- Is the PAM configuration known to be sane?  (i.e., have you confirmed
 	that there are no files in /etc/pam.d/ that need to be merged via
 	etc-update from a previous upgrade?)

- What sort of output does sshd send to the syslog when the new user
 	attempts to login?  Does the output change-- and reveal any hints-- if
 	sshd is run in the forground in debug mode?

Joe
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user] Newly created user can't ssh in but others can?
  2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
  2006-11-17 20:16 ` Nangus Garba
  2006-11-17 20:20 ` Flophouse Joe
@ 2006-11-17 20:22 ` Richard Fish
  2006-11-17 21:04 ` Michael Sullivan
  3 siblings, 0 replies; 6+ messages in thread
From: Richard Fish @ 2006-11-17 20:22 UTC (permalink / raw
  To: gentoo-user

On 11/17/06, Daevid Vincent <daevid@daevid.com> wrote:
> Ideas?

1. Check /var/log/messages for output from sshd.
2. Compare "id daevid" to "id joe".
3. Make sure ~joe/.ssh has permissions 700

-Richard
-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* Re: [gentoo-user] Newly created user can't ssh in but others can?
  2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
                   ` (2 preceding siblings ...)
  2006-11-17 20:22 ` Richard Fish
@ 2006-11-17 21:04 ` Michael Sullivan
  2006-11-17 22:25   ` [gentoo-user] Newly created user can't ssh in but others can? [SOLVED] Daevid Vincent
  3 siblings, 1 reply; 6+ messages in thread
From: Michael Sullivan @ 2006-11-17 21:04 UTC (permalink / raw
  To: gentoo-user

On Fri, 2006-11-17 at 12:02 -0800, Daevid Vincent wrote:
> I have had my server for several years, I haven't added a new user in
> probably 6 months or more. I tried to add one last night and all seemed
> fine. However it can't login via ssh (not at a console, so I don't know
> about that way) but existing accounts can. 
> 
> I've tried changing the passwd to 'foo' (just something simple) and I keep
> getting the "Password:" prompt over and over. But if I ssh in to say, my
> account, it works fine.
> 
> Ideas?
> 
> /home looks like:
> 
> drwxr-xr-x  4 joe    users  4096 Nov 17 11:42 joe
> drwx--x--x 29 daevid users  4096 Nov 17 02:08 daevid 
> 
> daevid home # passwd joe
> New UNIX password: 'foo'
> BAD PASSWORD: it is WAY too short
> Retype new UNIX password: 'foo'
> passwd: password updated successfully
> 
> daevid home # ssh joe@localhost
> Password: 'foo'
> Password: 'foo'
> ...
> 
> daevid home # ssh daevid@localhost
> Password: 'secret'
> Last login: Fri Nov 17 11:46:06 2006 from daevid.com
> daevid@daevid ~ $ 
> 
> 
> ÐÆ5ÏÐ 
> 

Just a guess, but is your new user listed in AllowUsers in sshd
configuration?

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

* RE: [gentoo-user] Newly created user can't ssh in but others can? [SOLVED]
  2006-11-17 21:04 ` Michael Sullivan
@ 2006-11-17 22:25   ` Daevid Vincent
  0 siblings, 0 replies; 6+ messages in thread
From: Daevid Vincent @ 2006-11-17 22:25 UTC (permalink / raw
  To: gentoo-user

YES! That was it. 

Thanks so much for everyone's ideas and help. Long story short, just doing
'adduser' was sufficient. I didn't need a ".ssh" directory. I didn't need to
add to any groups. /var/log/messages was useless as it didn't show a single
blip about ssh.

I forgot I had 'locked down' my server and this is the solution:

Edit /etc/ssh/sshd_config
Add the user to the "AllowUsers" option list.
/etc/init.d/sshd restart

DÆVID  

> -----Original Message-----
> From: Michael Sullivan [mailto:michael@espersunited.com] 
> Sent: Friday, November 17, 2006 1:04 PM
> To: gentoo-user@lists.gentoo.org
> Subject: Re: [gentoo-user] Newly created user can't ssh in 
> but others can?
> 
> On Fri, 2006-11-17 at 12:02 -0800, Daevid Vincent wrote:
> > I have had my server for several years, I haven't added a 
> new user in
> > probably 6 months or more. I tried to add one last night 
> and all seemed
> > fine. However it can't login via ssh (not at a console, so 
> I don't know
> > about that way) but existing accounts can. 
> > 
> > I've tried changing the passwd to 'foo' (just something 
> simple) and I keep
> > getting the "Password:" prompt over and over. But if I ssh 
> in to say, my
> > account, it works fine.
> > 
> > Ideas?
> > 
> > /home looks like:
> > 
> > drwxr-xr-x  4 joe    users  4096 Nov 17 11:42 joe
> > drwx--x--x 29 daevid users  4096 Nov 17 02:08 daevid 
> > 
> > daevid home # passwd joe
> > New UNIX password: 'foo'
> > BAD PASSWORD: it is WAY too short
> > Retype new UNIX password: 'foo'
> > passwd: password updated successfully
> > 
> > daevid home # ssh joe@localhost
> > Password: 'foo'
> > Password: 'foo'
> > ...
> > 
> > daevid home # ssh daevid@localhost
> > Password: 'secret'
> > Last login: Fri Nov 17 11:46:06 2006 from daevid.com
> > daevid@daevid ~ $ 
> > 
> > 
> > ÐÆ5ÏÐ 
> > 
> 
> Just a guess, but is your new user listed in AllowUsers in sshd
> configuration?
> 
> -- 
> gentoo-user@gentoo.org mailing list
> 
> 


-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2006-11-17 22:31 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
2006-11-17 20:16 ` Nangus Garba
2006-11-17 20:20 ` Flophouse Joe
2006-11-17 20:22 ` Richard Fish
2006-11-17 21:04 ` Michael Sullivan
2006-11-17 22:25   ` [gentoo-user] Newly created user can't ssh in but others can? [SOLVED] Daevid Vincent

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox