SSH block-out after a few incorrect login attempts (DOH!)
I'm having problems SSH logging-in to my remote xubuntu box ... I'm connecting from a Gentoo box. I have a key-pair setup, that was working perfectly with my remote box. However, I needed to dynamically map (-D) a privileged port, so I temporarily enabled root login through SSH (/etc/ssh/
So, with the above changes set, using my original SSH session, I restarted the SSH instance: /etc/init.d/ssh restart.
I tried logging in as root a few times, without success - even though I was using the correct root password. I even reset the root password in the other session I had open AND restarted SSH just to be sure. Still no luck logging in as root.
Then, dumber than dumb, I logged out all sessions to the remote server ... thinking that maybe something was cached somewhere .... I don't really know why. The result of this: I'm now locked out of the remote server!
What happens, and I'll paste in the ssh -vvv info below - is it asks me for my keyboard-
Any idea of what the problem is here and ways I can resolve it? I can get access to the remote machine, although if it can be resolved from my computer here that would be much easier. However, if changes are required on the remote server side, then this can be arranged.
Thanks a lot for your help with this, I really appreciate it!
LZ
$ ssh -vvv <remote_server_ip> -p <remote_
OpenSSH_4.7p1, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /etc/ssh/ssh_config
debug3: cipher ok: aes256-cbc [aes256-
debug3: cipher ok: aes192-cbc [aes256-
debug3: cipher ok: blowfish-cbc [aes256-
debug3: ciphers ok: [aes256-
debug2: mac_setup: found hmac-sha1
debug3: mac ok: hmac-sha1 [hmac-sha1,
debug2: mac_setup: found hmac-ripemd160
debug3: mac ok: hmac-ripemd160 [hmac-sha1,
debug3: macs ok: [hmac-sha1,
debug2: ssh_connect: needpriv 0
debug1: Connecting to <remote_server_ip> [<remote_
debug2: fd 3 setting O_NONBLOCK
debug1: fd 3 clearing O_NONBLOCK
debug1: Connection established.
debug3: Not a RSA1 key file <$HOME>
debug2: key_type_from_name: unknown key type '-----BEGIN'
debug3: key_read: missing keytype
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug2: key_type_from_name: unknown key type '-----END'
debug3: key_read: missing keytype
debug1: identity file <$HOME>/.ssh/id_rsa type 1
debug1: identity file <$HOME>/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.6p1 Debian-5ubuntu0.1
debug1: match: OpenSSH_4.6p1 Debian-5ubuntu0.1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.7
debug2: fd 3 setting O_NONBLOCK
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: diffie-
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes256-
debug2: kex_parse_kexinit: aes256-
debug2: kex_parse_kexinit: hmac-sha1,
debug2: kex_parse_kexinit: hmac-sha1,
debug2: kex_parse_kexinit: <email address hidden>,zlib,none
debug2: kex_parse_kexinit: <email address hidden>,zlib,none
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit: diffie-
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes256-
debug2: kex_parse_kexinit: aes256-
debug2: kex_parse_kexinit: hmac-sha1,
debug2: kex_parse_kexinit: hmac-sha1,
debug2: kex_parse_kexinit: none,<email address hidden>
debug2: kex_parse_kexinit: none,<email address hidden>
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_setup: found hmac-sha1
debug1: kex: server->client aes256-cbc hmac-sha1 <email address hidden>
debug2: mac_setup: found hmac-sha1
debug1: kex: client->server aes256-cbc hmac-sha1 <email address hidden>
debug1: SSH2_MSG_
debug1: expecting SSH2_MSG_
debug2: dh_gen_key: priv key bits set: 258/512
debug2: bits set: 2065/4096
debug1: SSH2_MSG_
debug1: expecting SSH2_MSG_
debug3: put_host_port: [<remote_
debug3: put_host_port: [<remote_
debug3: check_host_
debug3: check_host_
debug3: check_host_
debug3: check_host_
debug1: Host '[<remote_
debug1: Found key in <$HOME>
debug2: bits set: 2011/4096
debug1: ssh_rsa_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_
debug2: key: <$HOME>/.ssh/id_rsa (0x66c0c0)
debug2: key: <$HOME>/.ssh/id_dsa ((nil))
debug1: Authentications that can continue: publickey,
debug3: start over, passed a different list publickey,
debug3: preferred publickey,
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-
debug3: authmethod_
debug1: Next authentication method: publickey
debug1: Offering public key: <$HOME>/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Authentications that can continue: publickey,
debug1: Trying private key: <$HOME>/.ssh/id_dsa
debug3: no such identity: <$HOME>/.ssh/id_dsa
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-
debug3: remaining preferred: password
debug3: authmethod_
debug1: Next authentication method: keyboard-
debug2: userauth_kbdint
debug2: we sent a keyboard-
debug2: input_userauth_
debug2: input_userauth_
Password:
debug3: packet_send2: adding 32 (len 28 padlen 4 extra_pad 64)
debug1: Authentications that can continue: publickey,
debug2: userauth_kbdint
debug2: we sent a keyboard-
debug2: input_userauth_
debug2: input_userauth_
Password:
debug3: packet_send2: adding 32 (len 28 padlen 4 extra_pad 64)
debug1: Authentications that can continue: publickey,
debug2: userauth_kbdint
debug2: we sent a keyboard-
debug2: input_userauth_
debug2: input_userauth_
Password:
debug3: packet_send2: adding 32 (len 28 padlen 4 extra_pad 64)
debug1: Authentications that can continue: publickey,
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred:
debug3: authmethod_
debug1: Next authentication method: password
<user>@
debug3: packet_send2: adding 48 (len 64 padlen 16 extra_pad 64)
debug2: we sent a password packet, wait for reply
debug1: Authentications that can continue: publickey,
Permission denied, please try again.
<user>@
debug3: packet_send2: adding 48 (len 64 padlen 16 extra_pad 64)
debug2: we sent a password packet, wait for reply
debug1: Authentications that can continue: publickey,
Permission denied, please try again.
<user>@
debug3: packet_send2: adding 48 (len 64 padlen 16 extra_pad 64)
debug2: we sent a password packet, wait for reply
Received disconnect from <remote_server_ip>: 2: Too many authentication failures for <user>
My local /etc/ssh/ssh_config is:
AddressFamily inet
Ciphers aes256-
Compression yes
ConnectTimeout 20
ForwardX11 no
MACs hmac-sha1,
Protocol 2
ServerAliveCountMax 3
ServerAliveInterval 15
TCPKeepAlive yes
Question information
- Language:
- English Edit question
- Status:
- Answered
- For:
- Ubuntu Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply:
Can you help with this problem?
Provide an answer of your own, or ask Lord Zos for more information if necessary.