* [gentoo-user] Newly created user can't ssh in but others can?
@ 2006-11-17 20:02 Daevid Vincent
2006-11-17 20:16 ` Nangus Garba
` (3 more replies)
0 siblings, 4 replies; 6+ messages in thread
From: Daevid Vincent @ 2006-11-17 20:02 UTC (permalink / raw
To: gentoo-user
I have had my server for several years, I haven't added a new user in
probably 6 months or more. I tried to add one last night and all seemed
fine. However it can't login via ssh (not at a console, so I don't know
about that way) but existing accounts can.
I've tried changing the passwd to 'foo' (just something simple) and I keep
getting the "Password:" prompt over and over. But if I ssh in to say, my
account, it works fine.
Ideas?
/home looks like:
drwxr-xr-x 4 joe users 4096 Nov 17 11:42 joe
drwx--x--x 29 daevid users 4096 Nov 17 02:08 daevid
daevid home # passwd joe
New UNIX password: 'foo'
BAD PASSWORD: it is WAY too short
Retype new UNIX password: 'foo'
passwd: password updated successfully
daevid home # ssh joe@localhost
Password: 'foo'
Password: 'foo'
...
daevid home # ssh daevid@localhost
Password: 'secret'
Last login: Fri Nov 17 11:46:06 2006 from daevid.com
daevid@daevid ~ $
ÐÆ5ÏÐ
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [gentoo-user] Newly created user can't ssh in but others can?
2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
@ 2006-11-17 20:16 ` Nangus Garba
2006-11-17 20:20 ` Flophouse Joe
` (2 subsequent siblings)
3 siblings, 0 replies; 6+ messages in thread
From: Nangus Garba @ 2006-11-17 20:16 UTC (permalink / raw
To: gentoo-user
[-- Attachment #1: Type: text/plain, Size: 117 bytes --]
Is the user in the group that is allowed to ssh in? I think it is the sshd
group or something like that.
code affe
[-- Attachment #2: Type: text/html, Size: 132 bytes --]
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [gentoo-user] Newly created user can't ssh in but others can?
2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
2006-11-17 20:16 ` Nangus Garba
@ 2006-11-17 20:20 ` Flophouse Joe
2006-11-17 20:22 ` Richard Fish
2006-11-17 21:04 ` Michael Sullivan
3 siblings, 0 replies; 6+ messages in thread
From: Flophouse Joe @ 2006-11-17 20:20 UTC (permalink / raw
To: gentoo-user
On Fri, 17 Nov 2006, Daevid Vincent wrote:
> I have had my server for several years, I haven't added a new user in
> probably 6 months or more. I tried to add one last night and all seemed
> fine. However it can't login via ssh (not at a console, so I don't know
> about that way) but existing accounts can.
It could be a bunch of things, so you're going to have to brainstorm.
Here are some quick ideas off the top of my head:
- Does the new user have a valid shell?
- If the new user's shell is valid and different from other users'
shells, then is the new user's shell listed in /etc/shells ?
- Is the PAM configuration known to be sane? (i.e., have you confirmed
that there are no files in /etc/pam.d/ that need to be merged via
etc-update from a previous upgrade?)
- What sort of output does sshd send to the syslog when the new user
attempts to login? Does the output change-- and reveal any hints-- if
sshd is run in the forground in debug mode?
Joe
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [gentoo-user] Newly created user can't ssh in but others can?
2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
2006-11-17 20:16 ` Nangus Garba
2006-11-17 20:20 ` Flophouse Joe
@ 2006-11-17 20:22 ` Richard Fish
2006-11-17 21:04 ` Michael Sullivan
3 siblings, 0 replies; 6+ messages in thread
From: Richard Fish @ 2006-11-17 20:22 UTC (permalink / raw
To: gentoo-user
On 11/17/06, Daevid Vincent <daevid@daevid.com> wrote:
> Ideas?
1. Check /var/log/messages for output from sshd.
2. Compare "id daevid" to "id joe".
3. Make sure ~joe/.ssh has permissions 700
-Richard
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [gentoo-user] Newly created user can't ssh in but others can?
2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
` (2 preceding siblings ...)
2006-11-17 20:22 ` Richard Fish
@ 2006-11-17 21:04 ` Michael Sullivan
2006-11-17 22:25 ` [gentoo-user] Newly created user can't ssh in but others can? [SOLVED] Daevid Vincent
3 siblings, 1 reply; 6+ messages in thread
From: Michael Sullivan @ 2006-11-17 21:04 UTC (permalink / raw
To: gentoo-user
On Fri, 2006-11-17 at 12:02 -0800, Daevid Vincent wrote:
> I have had my server for several years, I haven't added a new user in
> probably 6 months or more. I tried to add one last night and all seemed
> fine. However it can't login via ssh (not at a console, so I don't know
> about that way) but existing accounts can.
>
> I've tried changing the passwd to 'foo' (just something simple) and I keep
> getting the "Password:" prompt over and over. But if I ssh in to say, my
> account, it works fine.
>
> Ideas?
>
> /home looks like:
>
> drwxr-xr-x 4 joe users 4096 Nov 17 11:42 joe
> drwx--x--x 29 daevid users 4096 Nov 17 02:08 daevid
>
> daevid home # passwd joe
> New UNIX password: 'foo'
> BAD PASSWORD: it is WAY too short
> Retype new UNIX password: 'foo'
> passwd: password updated successfully
>
> daevid home # ssh joe@localhost
> Password: 'foo'
> Password: 'foo'
> ...
>
> daevid home # ssh daevid@localhost
> Password: 'secret'
> Last login: Fri Nov 17 11:46:06 2006 from daevid.com
> daevid@daevid ~ $
>
>
> ÐÆ5ÏÐ
>
Just a guess, but is your new user listed in AllowUsers in sshd
configuration?
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 6+ messages in thread
* RE: [gentoo-user] Newly created user can't ssh in but others can? [SOLVED]
2006-11-17 21:04 ` Michael Sullivan
@ 2006-11-17 22:25 ` Daevid Vincent
0 siblings, 0 replies; 6+ messages in thread
From: Daevid Vincent @ 2006-11-17 22:25 UTC (permalink / raw
To: gentoo-user
YES! That was it.
Thanks so much for everyone's ideas and help. Long story short, just doing
'adduser' was sufficient. I didn't need a ".ssh" directory. I didn't need to
add to any groups. /var/log/messages was useless as it didn't show a single
blip about ssh.
I forgot I had 'locked down' my server and this is the solution:
Edit /etc/ssh/sshd_config
Add the user to the "AllowUsers" option list.
/etc/init.d/sshd restart
DÆVID
> -----Original Message-----
> From: Michael Sullivan [mailto:michael@espersunited.com]
> Sent: Friday, November 17, 2006 1:04 PM
> To: gentoo-user@lists.gentoo.org
> Subject: Re: [gentoo-user] Newly created user can't ssh in
> but others can?
>
> On Fri, 2006-11-17 at 12:02 -0800, Daevid Vincent wrote:
> > I have had my server for several years, I haven't added a
> new user in
> > probably 6 months or more. I tried to add one last night
> and all seemed
> > fine. However it can't login via ssh (not at a console, so
> I don't know
> > about that way) but existing accounts can.
> >
> > I've tried changing the passwd to 'foo' (just something
> simple) and I keep
> > getting the "Password:" prompt over and over. But if I ssh
> in to say, my
> > account, it works fine.
> >
> > Ideas?
> >
> > /home looks like:
> >
> > drwxr-xr-x 4 joe users 4096 Nov 17 11:42 joe
> > drwx--x--x 29 daevid users 4096 Nov 17 02:08 daevid
> >
> > daevid home # passwd joe
> > New UNIX password: 'foo'
> > BAD PASSWORD: it is WAY too short
> > Retype new UNIX password: 'foo'
> > passwd: password updated successfully
> >
> > daevid home # ssh joe@localhost
> > Password: 'foo'
> > Password: 'foo'
> > ...
> >
> > daevid home # ssh daevid@localhost
> > Password: 'secret'
> > Last login: Fri Nov 17 11:46:06 2006 from daevid.com
> > daevid@daevid ~ $
> >
> >
> > ÐÆ5ÏÐ
> >
>
> Just a guess, but is your new user listed in AllowUsers in sshd
> configuration?
>
> --
> gentoo-user@gentoo.org mailing list
>
>
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2006-11-17 22:31 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-11-17 20:02 [gentoo-user] Newly created user can't ssh in but others can? Daevid Vincent
2006-11-17 20:16 ` Nangus Garba
2006-11-17 20:20 ` Flophouse Joe
2006-11-17 20:22 ` Richard Fish
2006-11-17 21:04 ` Michael Sullivan
2006-11-17 22:25 ` [gentoo-user] Newly created user can't ssh in but others can? [SOLVED] Daevid Vincent
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox