| View previous topic :: View next topic |
| Author |
Message |
keba
Apprentice
Joined: 02 Jun 2006
Posts: 254
Location: Switzerland
|
 Posted: Thu Oct 09, 2008 9:38 pm Post subject: "ssh passphrase" instead of "password" p |
 |
|
Hi,
I have got a really weird problem: on login I get a prompt for an "SSH passphrase" instead of one for a password. This looks like this:
| Code: |
linux login: root
SSH passphrase: "my-password"
Last login: whatever
#
|
Can you tell me how to get my "password" prompt back? I didn't do anything strange except starting ssh with /etc/init.d/sshd start and emerge alsa-utils (I'm doing a first install and I want to always start sshd manually when I need it). After a reboot it still asks for the SSH passphrase even though sshd isn't running. Thanks in advance
_________________
Prayer can change the world!
Last edited by keba on Tue Oct 14, 2008 2:06 pm; edited 1 time in total |
|
| Back to top |
|
 |
notHerbert
Advocate
Joined: 11 Mar 2008
Posts: 2228
Location: 45N 73W
|
| Posted: Thu Oct 09, 2008 9:52 pm Post subject: |
|
|
That is weird. Please post output of | Code: | cat /etc/pam.d/system-auth
cat /etc/pam.d/system-login
|
|
|
| Back to top |
|
|
keba
Apprentice
Joined: 02 Jun 2006
Posts: 254
Location: Switzerland
|
| Posted: Fri Oct 10, 2008 7:07 am Post subject: |
|
|
I forgot, some parts of the system got rebuilt because of a revdep-rebuild (I switched to a newer GCC and to UTF-
This is /etc/pam.d/system-auth:
| Code: |
auth required pam_env.so
auth sufficient pam_ssh.so
auth required pam_unix.so try_first_pass likeauth nullok
account required pam_unix.so
password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
password required pam_unix.so try_first_pass use_authtok nullok sha512 shadow
session required pam_limits.so
session required pam_env.so
session optional pam_ssh.so
session required pam_unix.so
session optional pam_permit.so
|
And /etc/pam.d/system-login: | Code: |
auth required pam_tally.so file=/var/log/faillog onerr=succeed
auth required pam_shells.so
auth required pam_nologin.so
auth include system-auth
account required pam_access.so
account required pam_nologin.so
account include system-auth
account required pam_tally.so file=/var/log/faillog onerr=succeed
password include system-auth
session required pam_env.so
session optional pam_lastlog.so
session include system-auth
session optional pam_motd.so motd=/etc/motd
session optional pam_mail.so
|
_________________
Prayer can change the world! |
|
| Back to top |
|
|
notHerbert
Advocate
Joined: 11 Mar 2008
Posts: 2228
Location: 45N 73W
|
| Posted: Sat Oct 11, 2008 7:00 pm Post subject: |
|
|
Change /etc/pam.d/system-auth from this | Code: | auth required pam_env.so
auth sufficient pam_ssh.so
auth required pam_unix.so try_first_pass likeauth nullok
account required pam_unix.so
password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
password required pam_unix.so try_first_pass use_authtok nullok sha512 shadow
session required pam_limits.so
session required pam_env.so
session optional pam_ssh.so
session required pam_unix.so
session optional pam_permit.so |
To this to remove the 2 ssh lines | Code: | auth required pam_env.so
auth required pam_unix.so try_first_pass likeauth nullok
account required pam_unix.so
password required pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 retry=3
password required pam_unix.so try_first_pass use_authtok nullok sha512 shadow
session required pam_limits.so
session required pam_env.so
session required pam_unix.so
session optional pam_permit.so |
|
|
| Back to top |
|
|
keba
Apprentice
Joined: 02 Jun 2006
Posts: 254
Location: Switzerland
|
| Posted: Tue Oct 14, 2008 2:06 pm Post subject: |
|
|
that worked, thanks a lot
_________________
Prayer can change the world! |
|
| Back to top |
|
|
lindegur
Apprentice
Joined: 14 Aug 2004
Posts: 227
Location: Swiss mountains
|
| Posted: Fri Apr 10, 2009 9:01 am Post subject: |
|
|
I had the same problem and I have solved it the same way. Thanks a lot.
However /etc.pam.d/system-auth gets emerged by pambase. If I do then /etc.pam.d/system-auth gets untouched. If I delete /etc.pam.d/system-auth and then do then I get the "buggy" /etc.pam.d/system-auth.
Therefore I'm afraid that sometimes in the future I could run again in the problem. I do not understand how emerge creates the /etc.pam.d/system-auth. Debugging pambase? |
|
| Back to top |
|
|
gentoo-dev
Apprentice
Joined: 24 Jan 2006
Posts: 172
|
| Posted: Fri Apr 10, 2009 10:50 am Post subject: |
|
|
| I disabled pam a long time ago and never looked back. pam probably stands for Pain And Mess. |
|
| Back to top |
|
|
avx
Veteran
Joined: 21 Jun 2004
Posts: 1619
|
| Posted: Fri Apr 10, 2009 1:13 pm Post subject: |
|
|
| Have you merged sys-auth/pambase with USE="ssh"? |
|
| Back to top |
|
|
lindegur
Apprentice
Joined: 14 Aug 2004
Posts: 227
Location: Swiss mountains
|
| Posted: Mon Apr 13, 2009 2:10 pm Post subject: |
|
|
Yes I have set the ssh use flag, since I use ssh.
However I should have read first what the ssh useflag does 
I deleted the ssh useflag and now everything is ok. 
Just manually deleting the two lines but have the ssh useflag still set, would not be an acceptable solution to the problem
Thanks a lot PH030  |
|
| Back to top |
|
|
|
Other Things Gentoo
