netbsd-help: Re: sshd doesn't let me in

Subject: Re: sshd doesn't let me in
To: Rudi Ludwig <rudihl@gmx.de>
From: marauder2c <marauder2c@gmx.net>
List: netbsd-help
Date: 04/27/2005 23:30:37
Hello,

ok, I may be on the wrong track here (actually this is the first time I
try to give advice..),
but as far as I remember root-logins via ssh are disabled by default (as
a security measure).
You can change that in the sshd.conf-file ...or do what the designers
had in mind:
Create a regular account, make it su-able, login with that and su from
there.

Hope I made any sense :-)

Roman

Rudi Ludwig wrote:

>Hello all:
>
>- installed NetBSD 2.0.2 i386 
>- enabled sshd in /etc/rc.conf
>- started it /etc/rc.d/sshd start
>
>but all I get when I want to log into
>that box is:
>
>rudi@ibook:~$ ssh steinlaus -l root
>The authenticity of host 'steinlaus (192.168.2.2)' can't be established.
>RSA key fingerprint is 94:16:61:89:b8:9c:b4:c2:26:d7:6a:d2:a8:0e:da:cc.
>Are you sure you want to continue connecting (yes/no)? yes
>Warning: Permanently added 'steinlaus,192.168.2.2' (RSA) to the list of
>known hosts.
>root@steinlaus's password: 
>Permission denied, please try again.
>root@steinlaus's password: 
>Permission denied, please try again.
>root@steinlaus's password: 
>Permission denied (publickey,password,keyboard-interactive).
>rudi@ibook:~$ 
>
>retries omit adding the new key to the known hosts file, but the result
>is just the same.
>
>root does have a real password, not just an empty string, so SSH should
>not complain for that matter.
>The box is a plain new install no change to any config file.
>it runs on IPv4 192.168.2.2
>I entered defaultroute, hostname, etc.  befor starting the actual
>install process, so these values got added by NetBSD installer to the
>/etc-files. (No chance for me to mess anything ;-) )
>
>Oddites noted:
>Since this is a "home" network I keep the domain-name empty.
>In rc.conf the hostname got appended with a "." (dot) probably expecting
>a domainname to follow. (deleted the dot because on NetBSD 1.6 I never
>had one there)
>
>after a reboot sendmail complains:
>... sm-mta[334]: My unqualified host name (steinlaus) unknown; sleeping
>for retry
>To me that's a realy strange one: this computer and my notebook are
>registered in /etc/hosts and the hostname is set in rc.conf  What else
>is missing???
>
>I am not sure whether my problem relates to this thread:
>http://mail-index.netbsd.org/netbsd-help/2005/02/15/0011.html
>
>The two boxes sit on the same IPv4 subnet, there is only a wlan-router
>and a hub inbetween. Oh, and they both run NetBSD 2.0 (macppc (RC4 IIRC)
>and i386 2.0.2). To make it worse, i can however log into my ibook via
>ssh, and I cannot spot a difference in the respective config-files, odd.
>
>Any idea how to fix the problem? What is broken?
>
>
>tia
>
>Rudi
>
>
>  
>