Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Why am I sending the publickey?

from [Gian G. Spicuzza] Network Security [Permanent Link]
Subject: Re: Why am I sending the publickey?
Date: Mon, 20 Mar 2006 21:24:47 -0500 
Did you try "ssh -o PreferredAuthentications=password user@ip"?

Somewhere in your config (or by default), public key is set as the preferred method of authentication. You may have max retrys set to one, which would cause a disconnect because after the public key is denied you have used your one authentication try. 

To fix the problem, try one of the following:

Set preferred authentication method to password.
*Increase max authentication trys. (probably easiest)*
Use syntax: "ssh -o PreferredAuthentications=password user@ip" for every login.

I hope this helps!

--Gian

Zembower, Kevin wrote:

I'm trying to re-establish SSH communication between two of my hosts. I
can use SSH to login between the hosts as a normal user, but not as the
root user. Root logons between the hosts used to work, but I may have
screwed up and regenerated the keys. PermitRootLogin is set to 'yes' on
the remote host. When I have no /root/.ssh/id_rsa file, I can log into
the remote host as root with my root password. However, when I
regenerate the id_rsa key, in preparation to sending it to the other
host, I get these lines in 'ssh -v:'

[root@xxx .ssh]# ssh -v xxx.xxx.xxx
OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
<snip>
debug1: Found key in /root/.ssh/known_hosts:1
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue:
publickey,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /root/.ssh/identity
debug1: Offering public key: /root/.ssh/id_rsa
Connection closed by xx.xx.xx.xx
[root@xxx .ssh]#

I don't understand why it's trying the publickey method.

On the remote host, I've removed the lines in /root/.ssh/authorized keys
for the host I'm coming from, and restarted sshd, 

I'm at a loss. I suspect that this is an easy problem for someone who
knows SSH better than I do, and I'm hoping you all can help me. Thanks
in advance for your advice and suggestions.

-Kevin Zembower






[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Why am I sending the publickey?, Roland Turner (Security Focus)
Next by Date:  Logging tunnels established by users., Laurence Stendard
Previous by Thread:  Re: Why am I sending the publickey?, Roland Turner (Security Focus)
Next by Thread:  RE: Why am I sending the publickey?, Zembower, Kevin
Indexes:  [Date] [Thread] [Top] [All Lists]