Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

sshd, pam and clear text

from [Robert Frank] Network Security [Permanent Link]
Subject: sshd, pam and clear text
Date: Wed, 16 May 2007 08:07:31 +0200 
Hi,

I'm currently writing a pam which uses an external serfvice to
authenticate users. For this to work, I need to have the clear text
password the user entered at the keyboard. The pam then asks the
external authority, using the login and the password obtained, to
check if the user may login or not.

This works fine for gdm and  console login, but fails for ssh.
I've tried several different settings in sshd (PasswordAuthentication

yes/no, ChallengeResponseAuthentication yes/no, UsePAM yes), and ssh
does use my prompt I set in the challenge/response of the pam, but
all I ever get back as password is:

INCORRECT (sometimes in parentheses).

What settings are necessary to get the clear text password? Where is
the pam interaction of ssh (openssh) documented?

I'm using OpenSSH_4.3p2, OpenSSL 0.9.8a 11 Oct 2005 on FC5.

Thanks for any pointers.

Robert


Departement Informatik FGB tel +41 (0)61 267 14 66
Universität Basel fax. +41 (0)61 267 14 61
Robert Frank
Klingelbergstrasse 50 Robert.Frank@unibas.ch
CH-4056 Basel
Switzerland http:// www.informatik.unibas.ch/personen/frank_r.html




[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Query on Open SSH (SFTP Server: Multihomed), Nirmal Babu Puliyadi Suriya Kumar -X (npuliyad - HCL at Cisco)
Next by Date:  graceful ssh key management, Kevin Hunter
Previous by Thread:  Re: RE Read from remote host web01.sti.local: Connection reset by peer, tom
Next by Thread:  ssh version issue ....ssh?, Yard, John
Indexes:  [Date] [Thread] [Top] [All Lists]