SSHD

[forezien]

Bonjour

Voila j'essaie de mettre en oeuvre ssh

config :

/etc/inetd.conf

telnet stream tcp nowait root /usr/sbin/telnetd telnetd

sshd stream tcp nowait root /usr/syno/sbin/sshd sshd -i

/etc/ssh/sshd_config

# $OpenBSD: sshd_config,v 1.72 2005/07/25 11:59:40 markus Exp $

# This is the sshd server system-wide configuration file. See

# sshd_config(5) for more information.

# This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin

# The strategy used for options in the default sshd_config shipped with

# OpenSSH is to specify options with their default value where

# possible, but leave them commented. Uncommented options change a

# default value.

Port 22

Protocol 2,1

#AddressFamily any

ListenAddress 0.0.0.0

#ListenAddress ::

# HostKey for protocol version 1

HostKey /etc/ssh/ssh_host_key

# HostKeys for protocol version 2

HostKey /etc/ssh/ssh_host_rsa_key

HostKey /etc/ssh/ssh_host_dsa_key

# Lifetime and size of ephemeral version 1 server key

#KeyRegenerationInterval 1h

#ServerKeyBits 768

# Logging

# obsoletes QuietMode and FascistLogging

#SyslogFacility AUTH

#LogLevel INFO

# Authentication:

#LoginGraceTime 2m

PermitRootLogin yes

#StrictModes yes

#MaxAuthTries 6

RSAAuthentication yes

PubkeyAuthentication no

#AuthorizedKeysFile .ssh/authorized_keys

#now ssh is only used by rsync ==> auth by passwd file of rsync server

#AuthPassFile /etc/rsyncd.secrets

# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts

RhostsRSAAuthentication no

RhostsAuthentication no

# similar for protocol version 2

HostbasedAuthentication no

# Change to yes if you don't trust ~/.ssh/known_hosts for

# RhostsRSAAuthentication and HostbasedAuthentication

#IgnoreUserKnownHosts no

# Don't read the user's ~/.rhosts and ~/.shosts files

IgnoreRhosts yes

# To disable tunneled clear text passwords, change to no here!

PasswordAuthentication yes

PermitEmptyPasswords no

# Change to no to disable s/key passwords

#ChallengeResponseAuthentication yes

# Kerberos options

#KerberosAuthentication no

#KerberosOrLocalPasswd yes

#KerberosTicketCleanup yes

#KerberosGetAFSToken no

# GSSAPI options

#GSSAPIAuthentication no

#GSSAPICleanupCredentials yes

# Set this to 'yes' to enable PAM authentication, account processing,

# and session processing. If this is enabled, PAM authentication will

# be allowed through the ChallengeResponseAuthentication mechanism.

# Depending on your PAM configuration, this may bypass the setting of

# PasswordAuthentication, PermitEmptyPasswords, and

# "PermitRootLogin without-password". If you just want the PAM account and

# session checks to run without PAM authentication, then enable this but set

# ChallengeResponseAuthentication=no

UsePAM no

Compression yes

#AllowTcpForwarding yes

#GatewayPorts no

#X11Forwarding no

#X11DisplayOffset 10

#X11UseLocalhost yes

#PrintMotd yes

#PrintLastLog yes

#TCPKeepAlive yes

#UseLogin no

#UsePrivilegeSeparation yes

#PermitUserEnvironment no

#Compression delayed

#ClientAliveInterval 0

#ClientAliveCountMax 3

#UseDNS yes

#PidFile /var/run/sshd.pid

#MaxStartups 10

DenyUsers toto

# no default banner path

#Banner /some/path

# override default of no subsystems

Subsystem sftp /usr/libexec/sftp-server

generation des cles

ssh-keygen -t rsa1 -f /etc/ssh/ssh_host_key

ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key

ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key

la directory /etc/ssh

-rw------- 1 root root 1192 Jul 28 11:30 ssh_host_dsa_key

-rw-r--r-- 1 root root 1118 Jul 28 11:30 ssh_host_dsa_key.pub

-rw------- 1 root root 979 Jul 28 11:30 ssh_host_key

-rw-r--r-- 1 root root 643 Jul 28 11:30 ssh_host_key.pub

-rw------- 1 root root 1675 Jul 28 11:26 ssh_host_rsa_key

-rw-r--r-- 1 root root 398 Jul 28 11:26 ssh_host_rsa_key.pub

-rw-r--r-- 1 root root 3000 Jul 28 11:07 sshd_config

jusque la tout va bien

lorsque je me connecte en ssh via putty je rentre mon user en l'occurence :root (je sais c'est pas bien mais je paufinerai apres !!!)

et je rentre le mot de passe qui va bien et il m'envoie bouler

dans la directory /root/.ssh/ les fichiers

id_dsa

id_dsa.pub

id_rsa

id_rsa.pub

identity

identity.pub

sont presents

Je pourrais voir un hic car dans mon mots de passe il y a : @

Si quelqu un a mis en service ssh et si il veux me donner un peut d'aide je suis preneur.

ps je me sers du ssh par defaut dans le code 371

A+

Forezien

[tounenout]

Salut

personnellement, j'ai install

[rodo37]

Bonjour,

J'ai eu le même probl

[forezien]

Bonjour,

J'ai eu le même probl

[rodo37]

Bonjour,

Tout d'abord merci de vos reponses.

Qu'entendez vous par "pas standard" ?

Quelqu'un peut il m'envoyer son fichier sshd_config que je puisse comparer ou sont mes erreurs.

A+

forezien

Par standard je veux dire les chiffres de 0

[gnubox]

Salut

personnellement, j'ai install