[CentOS] SSH suddenly started failing :(

John Lagrue admin at moraystudio.com
Thu Jun 7 18:29:02 UTC 2007


Cameron Showalter wrote:
> John Lagrue wrote:
>   
>> All of a sudden I can no longer ssh into my server running CentOS 4.5
>>
>> This is what happens:
>>
>> [john at lt-131-jdl-f7 ~]$ ssh -Y -p 2222 192.168.0.1
>> john at 192.168.0.1's password:
>> Connection to 192.168.0.1 closed by remote host.
>> Connection to 192.168.0.1 closed.
>>
>> And yes, the account does exist and the password is correct!
>>
>> Looking at the logs, I see this:
>>
>> Jun  7 18:51:37 moray1 sshd(pam_unix)[11348]: authentication failure;
>> logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.209  user=john
>> Jun  7 18:51:46 moray1 sshd[11348]: Accepted password for john from
>> ::ffff:192.168.0.209 port 57755 ssh2
>> Jun  7 18:51:46 moray1 sshd(pam_unix)[11352]: session opened for user
>> john by (uid=500)
>> Jun  7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed
>> opening loginuid Jun  7 18:51:46 moray1 pam_loginuid[11352]:
>> set_loginuid failed
>> Does any of this make sense?
>>
>> I've tried it on three different clients and get the same thing every
>> time.
>>
>> JDL
>>
>> Jun  7 18:51:46 moray1 sshd[11352]: fatal: PAM session setup
>> failed[14]: Cannot make/remove an entry for the specified session
>>
>>
>>
>> _______________________________________________
>> CentOS mailing list
>> CentOS at centos.org
>> http://lists.centos.org/mailman/listinfo/centos
>>
>>     
>
> is selinux enabled? 
>
> from a client, try ssh -v 192.168.0.1 -p 2222 and see what kind of
> debugging errors show up on the client side.
>   
No obvious errors that I can see :(
---------------------------------------------------
[john at lt-131-jdl-f7 ~]$ ssh -v -p 2222 192.168.0.1
OpenSSH_4.5p1, OpenSSL 0.9.8b 04 May 2006
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to 192.168.0.1 [192.168.0.1] port 2222.
debug1: Connection established.
debug1: identity file /home/john/.ssh/identity type -1
debug1: identity file /home/john/.ssh/id_rsa type -1
debug1: identity file /home/john/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.9p1
debug1: match: OpenSSH_3.9p1 pat OpenSSH_3.*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '[192.168.0.1]:2222' is known and matches the RSA host key.
debug1: Found key in /home/john/.ssh/known_hosts:2
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: 
publickey,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /home/john/.ssh/identity
debug1: Trying private key: /home/john/.ssh/id_rsa
debug1: Trying private key: /home/john/.ssh/id_dsa
debug1: Next authentication method: keyboard-interactive
debug1: Authentications that can continue: 
publickey,password,keyboard-interactive
debug1: Next authentication method: password
john at 192.168.0.1's password:
debug1: Authentication succeeded (password).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: Sending environment.
debug1: Sending env LANG = en_GB.UTF-8
debug1: channel 0: free: client-session, nchannels 1
Connection to 192.168.0.1 closed by remote host.
Connection to 192.168.0.1 closed.
debug1: Transferred: stdin 0, stdout 0, stderr 85 bytes in 0.0 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 4007.2
debug1: Exit status -1
-------------------------------------------------------




More information about the CentOS mailing list