Re: SSH permits root-Logins with wrong password

To: debian-user@lists.debian.org
Subject: Re: SSH permits root-Logins with wrong password
From: Patrick Lane <patrick.m.lane@csun.edu>
Date: Wed, 16 Jun 2004 10:35:33 -0700
Message-id: <[🔎] 1087407333.1019.9.camel@laptop>
Reply-to: patrick.m.lane@csun.edu
In-reply-to: <[🔎] 20040616154332.GA3907@thelogic.org>
References: <[🔎] 20040616154332.GA3907@thelogic.org>

I tried to duplicate this on a sid box and a sarge box (that hasn't been
upgraded for awhile). I couldn't duplicate your results. 

The sid box has 
ii  ssh            3.8.1p1-4      Secure rlogin/rsh/rcp replacement
(OpenSSH

and the sarge box has

ii  ssh            3.6.1p2-3      Secure rlogin/rsh/rcp replacement
(OpenSSH)


Sarge box:

patrick@laptop:~$ ssh -l root 10.224.112.121
root@10.224.112.121's password: 
Permission denied, please try again.
root@10.224.112.121's password: 
Permission denied, please try again.
root@10.224.112.121's password: 
Permission denied (publickey).
patrick@laptop:~$   


Sid box:

patrick@laptop:~$ ssh -l root 66.122.133.154
Password: 
Password: 
Password: 
root@66.122.133.154's password: 
Permission denied, please try again.
root@66.122.133.154's password: 
Permission denied, please try again.
root@66.122.133.154's password: 
Permission denied (publickey,password,keyboard-interactive).
patrick@laptop:~$

On Wed, 2004-06-16 at 08:43, Frank Niedermann wrote:
> Hello,
> 
> I have a Debian testing server on my network with OpenSSH running. If I
> try to log in as root but with wrong password I get the following:
> 
> deniedfr@dettnb80 deniedfr $ ssh root@dettlx18
> Password: <wrong password here>
> Password: <the same wrong password>
> Password: <the same wrong password>
> root@dettlx18's password: <the same wrong password>
> Last login: Wed Jun 16 17:03:11 2004 from dettnb80.tt.de.ifm
> dettlx18:~# uname -a
> Linux dettlx18 2.4.18-bf2.4 #1 Son Apr 14 09:53:28 CEST 2002 i686
> GNU/Linux
> dettlx18:~# 
> 
> The /var/log/auth.log:
> sshd[1335]: (pam_securetty) access denied: tty 'ssh' is not secure !
> sshd[1335]: (pam_unix) authentication failure; logname= uid=0 euid=0
>             tty=ssh ruser= rhost=dettnb80.tt.de.ifm  user=root
> sshd[1333]: error: PAM: Authentication failure
> sshd[1336]: (pam_securetty) access denied: tty 'ssh' is not secure !
> sshd[1336]: (pam_unix) authentication failure; logname= uid=0 euid=0
>             tty=ssh ruser= rhost=dettnb80.tt.de.ifm  user=root
> sshd[1333]: error: PAM: Authentication failure
> sshd[1337]: (pam_securetty) access denied: tty 'ssh' is not secure !
> sshd[1337]: (pam_unix) authentication failure; logname= uid=0 euid=0
>             tty=ssh ruser= rhost=dettnb80.tt.de.ifm  user=root
> sshd[1333]: error: PAM: Authentication failure
> sshd[1333]: Failed keyboard-interactive/pam for root from 172.16.15.80
>             port 32896 ssh2
> sshd[1333]: Accepted password for root from 172.16.15.80 port 32896 ssh2
> sshd[1338]: (pam_unix) session opened for user root by root(uid=0) 
> 
> If I try to use 'x' as wrong password, ssh won't let me in:
> root@dettlx18's password:
> Permission denied (publickey,password,keyboard-interactive).
> 
> Just as I would expect it. If I use a longer or similar password as the
> real root password, ssh will let me log in, example:
> real root password = linux4me -> success :)
> fake root password = fun4linux -> success! :(
> 
> The ssh package version:
> ii ssh 3.8p1-3 Secure rlogin/rsh/rcp replacement (OpenSSH) 
> 
> Any idea about that behavor?
> 
> Regards,
>   Frank
> -- 
>   Mail: fbn@thelogic.org
>   XMPP: fbn@charente.de
>

Reply to:

References:
- SSH permits root-Logins with wrong password
  - From: Frank Niedermann <fbn@thelogic.org>

Prev by Date: Re: ndiswrapper as a module
Next by Date: getting started with LISP
Previous by thread: SSH permits root-Logins with wrong password
Next by thread: Re: SSH permits root-Logins with wrong password
Index(es):
- Date
- Thread