Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

SSH login fails on Solaris 10

11 views
Skip to first unread message

mica78

unread,
Jun 26, 2007, 7:32:23 AM6/26/07
to
I just installed Solaris 10 on a SPARC box.
Now when I try to log in via ssh (from linux or Windows, using putty
ssh) my password fails. The same userid/pass works fine locally. Scp
works fine though.

Should I configure SSH somehow or what would fix this?

Thanks,
Mika

Dave Uhring

unread,
Jun 26, 2007, 9:02:49 AM6/26/07
to
On Tue, 26 Jun 2007 04:32:23 -0700, mica78 wrote:

> Now when I try to log in via ssh (from linux or Windows, using putty
> ssh) my password fails. The same userid/pass works fine locally. Scp
> works fine though.

You are not trying to access the system remotely as root, are you?

mica78

unread,
Jun 26, 2007, 9:37:17 AM6/26/07
to

Well yes, I am. Is that a problem?

Dave Uhring

unread,
Jun 26, 2007, 9:46:28 AM6/26/07
to

Yes it is, if you consider the security of your systems of any importance.

Create a user account, log in with that account, then if required, su to
root.

# useradd -c 'M J Stenberg' -d /export/home/mica78 -m -g 14 -s /usr/bin/ksh mica78
# passwd mica78

Message has been deleted

lok...@gmail.com

unread,
Jun 26, 2007, 3:21:56 PM6/26/07
to
On Jun 26, 9:27 am, Huge <H...@nowhere.much.invalid> wrote:
> Remote root logins are customarily forbidden by the ssh configuration.
>
> --
> "If only I had known, I should have become a watchmaker." ~ Albert Einstein
> [email me at huge {at} huge (dot) org <dot> uk]

you can also edit (NOT RECOMMENDED) your sshd_config file to allow
root access. again, this isn't recommended. do like the last guy said
and create yourself a user account and you should be good to go. also,
may want to look at the config to make sure you are using the proper
protocol and what not. oh yeah, and don't forget to start sshd, too!

Franco S.

unread,
Jun 27, 2007, 10:56:21 AM6/27/07
to

vi /etc/ssh/sshd_config

and add PermitRootLogin yes

Then restart ssh

svcadm restart ssh

:)

Dave Uhring

unread,
Jun 27, 2007, 12:19:06 PM6/27/07
to
On Wed, 27 Jun 2007 14:56:21 +0000, Franco S. wrote:

> vi /etc/ssh/sshd_config
...
> :)

:), my ass! It's not enough that there are already thousands of Unix
systems on the botnets; you want to add one more.

If the OP is really dumb enough to do this then at at least protect your
system by configuring /etc/hosts.allow to permit your trusted networks
access to the Solaris host and DENY access from the rest of the universe.

Franco S.

unread,
Jun 27, 2007, 4:10:27 PM6/27/07
to

The OP asked a question, to which I gave an answer. If you don't like
it "bite me".

It's not my job to sit here and discuss semantics with someone else
who doesn't like the advice.


:)

Rich Teer

unread,
Jun 27, 2007, 4:33:12 PM6/27/07
to
On Wed, 27 Jun 2007, Franco S. wrote:

> The OP asked a question, to which I gave an answer. If you don't like
> it "bite me".

Right, but the least you could do is qualify your advice with the appropriate
security warnings. The OP is presumably not a pro so is unlikely to consider
the security reprocussions of remote root logins.

> It's not my job to sit here and discuss semantics with someone else
> who doesn't like the advice.

Perhaps. But as (presumably) prefessional sysadmins, I think explicite
security warnings are in order. After all, I assume its not your job to
sit here and post to Usenet either. :-)

--
Rich Teer, SCSA, SCNA, SCSECA, OGB member

CEO,
My Online Home Inventory

Voice: +1 (250) 979-1638
URLs: http://www.rite-group.com/rich
http://www.myonlinehomeinventory.com

0 new messages