RE: [ssh-l] Session Terminate on Non-Local Account

chmod 600 the $HOME/.ssh/identity, id.rsa, and id.dsa files. the .pub files
can be 644
 
Jim
-----Original Message-----
From: Titus Stone [mailto:blueline@hanalani.org]
Sent: Tuesday, March 19, 2002 12:13 AM
To: ssh-l@erdelynet.com
Subject: [ssh-l] Session Terminate on Non-Local Account

I have installed and setup SSHD correctly, and it works great for all local
accounts. However, I am on my college's LAN, and use their NT (win2000)
domain. I have successfully added the specific college-domain user(s) to my
/etc/passwd file, but the server immidiatly terminates upon conncection.
Initially it said "bad gid" or something along that line, so I made the
user's group 544 (local admin), and it just disconnects me (see below).
 
Any help or comments would be appreciated.
 
Here is the connection log:
 
$ ssh localhost
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/etc/ssh_host_key' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /etc/ssh_host_key
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/etc/ssh_host_dsa_key' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /etc/ssh_host_dsa_key
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/etc/ssh_host_rsa_key' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /etc/ssh_host_rsa_key
ston4821@localhost's password:
Last login: Tue Mar 19 01:09:04 2002 from titusstone.hsutx.edu
Fanfare!!!
You are successfully logged in to this server!!!
Connection to localhost closed by remote host.
Connection to localhost closed.
 
 
 
 
Additionally, here is my passwd file, with ston4821 being the non-local
user:
 
everyone:*:0:0:,S-1-1-0::/bin/false
system:*:18:18:,S-1-5-18::/bin/false
admins:*:544:544:,S-1-5-32-544::/bin/false
admin::500:544:U-TITUSSTONE\Administrator,S-1-5-21-606747145-1606980848-1957
994488-500:/ho
me/Administrator:/bin/bash
ston4821:unused_by_nt/2000/xp:14846:544:Titus
Stone,U-HSUNETWORK\ston4821,S-1-5-21-1245667845-46086002-1847928074-4846://h
suhome/home$/s
ton4821:/bin/bash

--
List Information: http://tech.erdelynet.com/maillist-ssh-l.asp
List Archives:    http://erdelynet.com/archive/ssh-l/