Astaro User Bulletin Board
Go Back   Astaro User Bulletin Board > Astaro Gateway Products > Network Security: Firewall, NAT, QoS, IPS and more
Reload this Page Logging In Via SSH - Not Working?
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Welcome to the Astaro User Bulletin Board.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 02-21-2008, 12:47 PM
Senior Member
  
Join Date: Feb 2008
Location: MI
Posts: 134
Default Logging In Via SSH - Not Working?
I want to be able to SSH into my console at home. I've enabled SSH or "Shell Access" under Mangement --> System Settings.

I've even set the root password before I left for work this morning, and I could log in fine on the actual computer fine. However Im at work now and cannot log in. I connect fine, it asks for the login and I put root. However it keeps saying access denied when I put in my password.


I've even remotely accessed the web GUI and changed it to something else, and it still doesnt work. Any ideas?
Reply With Quote
  #2 (permalink)  
Old 02-21-2008, 02:11 PM
Member
  
Join Date: May 2003
Location: Czech Republic
Posts: 67
Default
Hi chugger93,

you have to first use user name "loginuser" and password for this user. You will see banner for ASG and after that you can use command "su" and password for root.
Reply With Quote
  #3 (permalink)  
Old 02-21-2008, 03:13 PM
Senior Member
  
Join Date: Feb 2008
Location: MI
Posts: 134
Default
i still cannot get it..please see the screenshot. I'm using PUTTY to connect via SSH. I tried using "loginuser" with the password I just set in the WEBGUI, and no luck!
Attached Images
File Type: jpg ssh.jpg (78.4 KB, 29 views)
Reply With Quote
  #4 (permalink)  
Old 02-21-2008, 10:07 PM
DarthWonka's Avatar
Junior Member
  
Join Date: Jul 2005
Location: Boulder, CO USA
Posts: 9
Default Cannot ssh as loginuser
I am not sure what is going on, but it has been a problem for a while. I cannot ssh into the appliance as 'loginuser' I have reset the password several times, I have allowed the internal network, still no dice.

The logs are hinting to a corrupt shadow file. I really don't want to bring us down today, is this repairable?


From SSH logs:

2008:02:21-22:51:23 (none) sshd[11338]: User loginuser not allowed because account is locked
2008:02:21-22:51:23 (none) sshd[11338]: Failed none for invalid user loginuser from 10.1.0.40 port 50565 ssh2
2008:02:21-22:51:33 (none) sshd[11338]: error: Could not get shadow information for NOUSER
2008:02:21-22:51:33 (none) sshd[11338]: Failed password for invalid user loginuser from 10.1.0.40 port 50565 ssh2
2008:02:21-22:51:33 (none) sshd[11338]: reverse mapping checking getaddrinfo for hector.ciclops.org failed - POSSIBLE BREAKIN ATTEMPT!
2008:02:21-22:54:28 (none) sshd[11502]: User loginuser not allowed because account is locked
2008:02:21-22:54:28 (none) sshd[11502]: Failed none for invalid user loginuser from 10.1.0.40 port 45115 ssh2
2008:02:21-22:54:39 (none) sshd[11502]: error: Could not get shadow information for NOUSER
2008:02:21-22:54:39 (none) sshd[11502]: Failed password for invalid user loginuser from 10.1.0.40 port 45115 ssh2
2008:02:21-22:54:40 (none) sshd[11502]: reverse mapping checking getaddrinfo for hector.ciclops.org failed - POSSIBLE BREAKIN ATTEMPT!
2008:02:21-22:54:45 (none) sshd[11502]: Failed password for invalid user loginuser from 10.1.0.40 port 45115 ssh2
2008:02:21-22:55:30 (none) sshd[11530]: User root password has expired (root forced)
2008:02:21-22:55:30 (none) sshd[11530]: Failed password for root from 10.1.0.40 port 45119 ssh2
2008:02:21-22:55:31 (none) sshd[11530]: reverse mapping checking getaddrinfo for hector.ciclops.org failed - POSSIBLE BREAKIN ATTEMPT!
2008:02:21-22:56:05 (none) sshd[11530]: Failed password for root from 10.1.0.40 port 45119 ssh2
2008:02:21-22:57:05 (none) sshd[11613]: User loginuser not allowed because account is locked
2008:02:21-22:57:05 (none) sshd[11613]: Failed none for invalid user loginuser from 10.1.0.40 port 45125 ssh2
2008:02:21-22:57:16 (none) sshd[11613]: error: Could not get shadow information for NOUSER
2008:02:21-22:57:16 (none) sshd[11613]: Failed password for invalid user loginuser from 10.1.0.40 port 45125 ssh2
2008:02:21-22:57:16 (none) sshd[11613]: reverse mapping checking getaddrinfo for hector.ciclops.org failed - POSSIBLE BREAKIN ATTEMPT!
2008:02:21-23:00:35 (none) sshd[11685]: Did not receive identification string from 10.1.0.40
2008:02:21-23:00:42 (none) sshd[11687]: User loginuser not allowed because account is locked
2008:02:21-23:00:42 (none) sshd[11687]: Failed none for invalid user loginuser from 10.1.0.40 port 36422 ssh2
Reply With Quote
  #5 (permalink)  
Old 02-21-2008, 10:29 PM
DarthWonka's Avatar
Junior Member
  
Join Date: Jul 2005
Location: Boulder, CO USA
Posts: 9
Default
The loginuser account is 'locked' which is not good. Does it ever unlock the user account?

I fixed the DNS problem that was causing the messages below:
Quote:
Originally Posted by DarthWonka View Post
From SSH logs:
2008:02:21-22:51:33 (none) sshd[11338]: reverse mapping checking getaddrinfo for hector.ciclops.org failed - POSSIBLE BREAKIN ATTEMPT!
These entries are still coming up:
Quote:
Originally Posted by DarthWonka View Post
2008:02:21-22:54:28 (none) sshd[11502]: User loginuser not allowed because account is locked
2008:02:21-22:54:28 (none) sshd[11502]: Failed none for invalid user loginuser from 10.1.0.40 port 45115 ssh2
2008:02:21-22:54:39 (none) sshd[11502]: error: Could not get shadow information for NOUSER
2008:02:21-22:54:39 (none) sshd[11502]: Failed password for invalid user loginuser from 10.1.0.40 port 45115 ssh2
Reply With Quote
  #6 (permalink)  
Old 06-21-2009, 08:56 PM
Senior Member
  
Join Date: Dec 2003
Location: South Dakota
Posts: 279
Default
Not sure if you fixed this or not, but I had the same problem with Putty in Vista and had to change Putty to use SSH1 (by default, it is set to use SSH2).
__________________
ASG v7.5xx:
|MSI MS-9642 945GME w/Celeron 440M Mini-ITX | Intel D201GLY2 "Little Valley" Mini-ITX |
[1GB Ram, Intel Pro/1000MT Dual Port Gigabit Ethernet, Travla C-137 Mini-ITX case]
Reply With Quote
  #7 (permalink)  
Old 08-05-2009, 09:38 PM
DarthWonka's Avatar
Junior Member
  
Join Date: Jul 2005
Location: Boulder, CO USA
Posts: 9
Default
I believe my problem was related to setting new password restrictions while having a password that was in violation of said restrictions.

Removing the restrictions, I believe, solved this problem.

Better solution: use a password that matches the security level you want.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 06:59 AM.

 
Contact Us - Astaro User Bulletin Board - Archive - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.


These pages are specifically maintained for the discussion of firewall issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases. issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases.