| www.delorie.com/archives/browse.cgi | search |
| X-Spam-Check-By: | sourceware.org |
| Message-ID: | <46AE3E1A.1000807@Hipp.com> |
| Date: | Mon, 30 Jul 2007 14:38:02 -0500 |
| From: | Michael Hipp <Michael AT Hipp DOT com> |
| User-Agent: | Thunderbird 2.0.0.5 (Windows/20070716) |
| MIME-Version: | 1.0 |
| To: | cygwin AT cygwin DOT com |
| Subject: | Re: sshd: public key working, but can't get passwords working |
| References: | <p06240802c2d24b662020@[192.168.1.8]> <f8ite8$at$1 AT sea DOT gmane DOT org> <p06240801c2d2ab3c9626@[192.168.1.8]> <f8j7aq$qja$1 AT sea DOT gmane DOT org> <p06240802c2d2de2f403a@[192.168.1.8]> <f8jbjd$4uc$1 AT sea DOT gmane DOT org> <p06240804c2d3961da325@[192.168.1.8]> <46ADE970 DOT 7010000 AT Hipp DOT com> <f8kte2$b8b$1 AT sea DOT gmane DOT org> |
| In-Reply-To: | <f8kte2$b8b$1@sea.gmane.org> |
| X-IsSubscribed: | yes |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
Thorsten Kampe wrote: > * Michael Hipp (Mon, 30 Jul 2007 08:36:48 -0500) >> Daniel Griscom wrote: >>> At 7:32 PM -0500 7/29/07, René Berber wrote: >>>> Back to the original problem: did you use ssh-user-config? (I guess >>>> What you reported about the log is simple, the password used is not >>>> correct... >>>> it should prompt you 3 times and then close the connection; or the >>>> configuration >>>> does not allow password authentication, let's check this last one: >>>> >>>> In /etc/sshd_config you should have: >>>> >>>> #PasswordAuthentication yes >>>> #PermitEmptyPasswords no >>>> #UsePAM no >>> All three lines are present and commented out (as above). >> I thought you were trying to use public/private key authentication, not >> password authentication? >> >> If so, then the first line above needs to be uncommented and changed to >> 'no'. > > No, password authentication and public are not mutually exlusive. The > default is fine. I didn't say they were. But since he's trying to use public/private key authentication then he probably wouldn't want password authentication available as an attack vector. Check your auth logs sometime and notice how common are attacks against port 22 using dictionaries and common account names. Michael -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |