ssh connexion refusée

To: debian list <debian-user-french@lists.debian.org>
Subject: ssh connexion refusée
From: Capacci Thomas <mrcapacci@free.fr>
Date: Mon, 13 Sep 2004 14:24:39 +0200
Message-id: <[🔎] 41459187.6050108@free.fr>

Bonjour,

J'ai un problème avec ssh.
Je dispose d'un PC en débian sid avec ssh2, la paire de clés a été générée.

J'ai récupéré la clé publique d'un poste numéro2 que j'ai placée dans lehome de l'utilisateur avec qui je veux me connecter (renomméeauthorized_keys).


ssh -v nagios@192.168.10.18

il me demande un password (pas normal alors que j'ai sa clé, passphrasevide)OpenSSH_3.4p1 Debian 1:3.4p1-1.woody.3, SSH protocols 1.5/2.0, OpenSSL0x0090603f

debug1: Reading configuration data /etc/ssh/ssh_config

debug1: Rhosts Authentication disabled, originating port will not betrusted.

debug1: ssh_connect: needpriv 0
debug1: Connecting to 192.168.10.18 [192.168.10.18] port 22.
debug1: Connection established.
debug1: identity file /root/.ssh/identity type -1
debug1: identity file /root/.ssh/id_rsa type -1
debug1: identity file /root/.ssh/id_dsa type -1

debug1: Remote protocol version 2.0, remote software versionOpenSSH_3.8.1p1 Debian 1:3.8.1p1-8

debug1: match: OpenSSH_3.8.1p1 Debian 1:3.8.1p1-8 pat OpenSSH*
Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.4p1 Debian 1:3.4p1-1.woody.3
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits set: 109/256
debug1: bits set: 1043/2048
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '192.168.10.18' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:7
debug1: bits set: 1031/2048
debug1: ssh_rsa_verify: signature correct
debug1: kex_derive_keys
debug1: newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: waiting for SSH2_MSG_NEWKEYS
debug1: newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: done: ssh_kex2.
debug1: send SSH2_MSG_SERVICE_REQUEST
debug1: service_accept: ssh-userauth
debug1: got SSH2_MSG_SERVICE_ACCEPT

debug1: authentications that can continue:publickey,password,keyboard-interactive

debug1: next auth method to try is publickey
debug1: try privkey: /root/.ssh/identity
debug1: try privkey: /root/.ssh/id_rsa
debug1: try privkey: /root/.ssh/id_dsa
debug1: next auth method to try is keyboard-interactive

debug1: authentications that can continue:publickey,password,keyboard-interactive

debug1: next auth method to try is password

debug1: authentications that can continue:publickey,password,keyboard-interactive

Permission denied, please try again.

debug1: authentications that can continue:publickey,password,keyboard-interactive

Permission denied, please try again.

debug1: authentications that can continue:publickey,password,keyboard-interactive

debug1: no more auth methods to try
Permission denied (publickey,password,keyboard-interactive).
debug1: Calling cleanup 0x8063aac(0x0)

Je n'arrive même pas à me loguer même en tant que root, pour ce dernierle mot de passe est toujours refusé.

Cela a à voir avec sid ?

mon sshd_config

# Package generated configuration file
# See the sshd(8) manpage for defails

# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
#Privilege Separation is turned on for security
UsePrivilegeSeparation yes

# ...but breaks Pam auth via kbdint, so we have to turn it off
# Use PAM authentication via keyboard-interactive so PAM modules can
# properly interface with the user (off due to PrivSep)
PAMAuthenticationViaKbdInt no
# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits 768

# Logging
SyslogFacility AUTH
LogLevel INFO

# Authentication:
LoginGraceTime 600
PermitRootLogin yes
StrictModes yes

RSAAuthentication yes
PubkeyAuthentication yes
#AuthorizedKeysFile	%h/.ssh/authorized_keys

# rhosts authentication should not be used
RhostsAuthentication no
# Don't read the user's ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no

# Uncomment if you don't trust ~/.ssh/known_hosts forRhostsRSAAuthentication

#IgnoreUserKnownHosts yes

# To enable empty passwords, change to yes (NOT RECOMMENDED)
PermitEmptyPasswords  no

# Uncomment to disable s/key passwords
#ChallengeResponseAuthentication no

# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes


# To change Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
#KerberosTicketCleanup no

# Kerberos TGT Passing does only work with the AFS kaserver
#KerberosTgtPassing yes

X11Forwarding no
X11DisplayOffset 10
PrintMotd no
#PrintLastLog no
KeepAlive yes
#UseLogin no

#MaxStartups 10:30:60
#Banner /etc/issue.net
#ReverseMappingCheck yes

Subsystem	sftp	/usr/lib/sftp-server

AllowUsers nagios
UsePAM no

J'espère avoir été clair, merci pour votre aide.

Reply to:

Follow-Ups:
- Re: ssh connexion refusée
  - From: Bertrand D <bertrand@bisounours.com>
- Re: ssh connexion refusée
  - From: Bruno Muller <bruno@inertiacreeps.net>

Prev by Date: Re: Document PDF
Next by Date: Re: Monter une dossier de type smbfs
Previous by thread: Conseil pour carte mère...
Next by thread: Re: ssh connexion refusée
Index(es):
- Date
- Thread