I just installed Solaris 10 on a SPARC box.
Now when I try to log in via ssh (from linux or Windows, using putty
ssh) my password fails. The same userid/pass works fine locally. Scp
works fine though.

Should I configure SSH somehow or what would fix this?

Thanks,
Mika

On Tue, 26 Jun 2007 04:32:23 -0700, mica78 wrote:

> Now when I try to log in via ssh (from linux or Windows, using putty
> ssh) my password fails. The same userid/pass works fine locally. Scp
> works fine though.

You are not trying to access the system remotely as root, are you?

On Jun 26, 4:02 pm, Dave Uhring <daveuhr...@yahoo.com> wrote:
> On Tue, 26 Jun 2007 04:32:23 -0700, mica78 wrote:
> > Now when I try to log in via ssh (from linux or Windows, using putty
> > ssh) my password fails. The same userid/pass works fine locally. Scp
> > works fine though.
>
> You are not trying to access the system remotely as root, are you?

Well yes, I am. Is that a problem?

On Tue, 26 Jun 2007 06:37:17 -0700, mica78 wrote:

> On Jun 26, 4:02 pm, Dave Uhring <daveuhr...@yahoo.com> wrote:

>> You are not trying to access the system remotely as root, are you?
> 
> Well yes, I am. Is that a problem?

Yes it is, if you consider the security of your systems of any importance.

Create a user account, log in with that account, then if required, su to
root.

# useradd -c 'M J Stenberg' -d /export/home/mica78 -m -g 14 -s /usr/bin/ksh mica78
# passwd mica78

On 2007-06-26, mica78 <mjstenberg@hotmail.com> wrote:
> On Jun 26, 4:02 pm, Dave Uhring <daveuhr...@yahoo.com> wrote:
>> On Tue, 26 Jun 2007 04:32:23 -0700, mica78 wrote:
>> > Now when I try to log in via ssh (from linux or Windows, using putty
>> > ssh) my password fails. The same userid/pass works fine locally. Scp
>> > works fine though.
>>
>> You are not trying to access the system remotely as root, are you?
>
> Well yes, I am. Is that a problem?

Remote root logins are customarily forbidden by the ssh configuration.


-- 
  "If only I had known, I should have become a watchmaker." ~ Albert Einstein
            [email me at huge {at} huge (dot) org <dot> uk]

On Jun 26, 9:27 am, Huge <H...@nowhere.much.invalid> wrote:
> On 2007-06-26, mica78 <mjstenb...@hotmail.com> wrote:
>
> > On Jun 26, 4:02 pm, Dave Uhring <daveuhr...@yahoo.com> wrote:
> >> On Tue, 26 Jun 2007 04:32:23 -0700, mica78 wrote:
> >> > Now when I try to log in via ssh (from linux or Windows, using putty
> >> > ssh) my password fails. The same userid/pass works fine locally. Scp
> >> > works fine though.
>
> >> You are not trying to access the system remotely as root, are you?
>
> > Well yes, I am. Is that a problem?
>
> Remote root logins are customarily forbidden by the ssh configuration.
>
> --
>   "If only I had known, I should have become a watchmaker." ~ Albert Einstein
>             [email me at huge {at} huge (dot) org <dot> uk]

you can also edit (NOT RECOMMENDED) your sshd_config file to allow
root access. again, this isn't recommended. do like the last guy said
and create yourself a user account and you should be good to go. also,
may want to look at the config to make sure you are using the proper
protocol and what not. oh yeah, and don't forget to start sshd, too!

On Jun 26, 12:32 pm, mica78 <mjstenb...@hotmail.com> wrote:
> I just installed Solaris 10 on a SPARC box.
> Now when I try to log in via ssh (from linux or Windows, using putty
> ssh) my password fails. The same userid/pass works fine locally. Scp
> works fine though.
>
> Should I configure SSH somehow or what would fix this?
>
> Thanks,
> Mika

vi /etc/ssh/sshd_config

and add PermitRootLogin   yes

Then restart ssh

svcadm restart ssh

:)

On Wed, 27 Jun 2007 14:56:21 +0000, Franco S. wrote:

> vi /etc/ssh/sshd_config
....
> :)

:), my ass!  It's not enough that there are already thousands of Unix
systems on the botnets; you want to add one more.

If the OP is really dumb enough to do this then at at least protect your
system by configuring /etc/hosts.allow to permit your trusted networks
access to the Solaris host and DENY access from the rest of the universe.

On Jun 27, 5:19 pm, Dave Uhring <daveuhr...@yahoo.com> wrote:
> On Wed, 27 Jun 2007 14:56:21 +0000, Franco S. wrote:
> > vi /etc/ssh/sshd_config
> ...
> > :)
>
> :), my ass!  It's not enough that there are already thousands of Unix
> systems on the botnets; you want to add one more.
>
> If the OP is really dumb enough to do this then at at least protect your
> system by configuring /etc/hosts.allow to permit your trusted networks
> access to the Solaris host and DENY access from the rest of the universe.

The OP asked a question, to which I gave an answer. If you don't like
it "bite me".

It's not my job to sit here and discuss semantics with someone else
who doesn't like the advice.


:)

On Wed, 27 Jun 2007, Franco S. wrote:

> The OP asked a question, to which I gave an answer. If you don't like
> it "bite me".

Right, but the least you could do is qualify your advice with the appropriate
security warnings.  The OP is presumably not a pro so is unlikely to consider
the security reprocussions of remote root logins.

> It's not my job to sit here and discuss semantics with someone else
> who doesn't like the advice.

Perhaps.  But as (presumably) prefessional sysadmins, I think explicite
security warnings are in order.  After all, I assume its not your job to
sit here and post to Usenet either.  :-)

-- 
Rich Teer, SCSA, SCNA, SCSECA, OGB member

CEO,
My Online Home Inventory

Voice: +1 (250) 979-1638
URLs: http://www.rite-group.com/rich
      http://www.myonlinehomeinventory.com