All of a sudden I can no longer ssh into my server running CentOS 4.5 This is what happens: [john at lt-131-jdl-f7 ~]$ ssh -Y -p 2222 192.168.0.1 john at 192.168.0.1's password: Connection to 192.168.0.1 closed by remote host. Connection to 192.168.0.1 closed. And yes, the account does exist and the password is correct! Looking at the logs, I see this: Jun 7 18:51:37 moray1 sshd(pam_unix)[11348]: authentication failure; logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.209 user=john Jun 7 18:51:46 moray1 sshd[11348]: Accepted password for john from ::ffff:192.168.0.209 port 57755 ssh2 Jun 7 18:51:46 moray1 sshd(pam_unix)[11352]: session opened for user john by (uid=500) Jun 7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed opening loginuid Jun 7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed Does any of this make sense? I've tried it on three different clients and get the same thing every time. JDL Jun 7 18:51:46 moray1 sshd[11352]: fatal: PAM session setup failed[14]: Cannot make/remove an entry for the specified session
John Lagrue wrote:> All of a sudden I can no longer ssh into my server running CentOS 4.5 > > This is what happens: > > [john at lt-131-jdl-f7 ~]$ ssh -Y -p 2222 192.168.0.1 > john at 192.168.0.1's password: > Connection to 192.168.0.1 closed by remote host. > Connection to 192.168.0.1 closed. > > And yes, the account does exist and the password is correct! > > Looking at the logs, I see this: > > Jun 7 18:51:37 moray1 sshd(pam_unix)[11348]: authentication failure; > logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.209 user=john > Jun 7 18:51:46 moray1 sshd[11348]: Accepted password for john from > ::ffff:192.168.0.209 port 57755 ssh2 > Jun 7 18:51:46 moray1 sshd(pam_unix)[11352]: session opened for user > john by (uid=500) > Jun 7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed > opening loginuid Jun 7 18:51:46 moray1 pam_loginuid[11352]: > set_loginuid failed > Does any of this make sense? > > I've tried it on three different clients and get the same thing every > time. > > JDL > > Jun 7 18:51:46 moray1 sshd[11352]: fatal: PAM session setup > failed[14]: Cannot make/remove an entry for the specified session > > > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >is selinux enabled? from a client, try ssh -v 192.168.0.1 -p 2222 and see what kind of debugging errors show up on the client side.
John Lagrue wrote:> All of a sudden I can no longer ssh into my server running CentOS 4.5 > > This is what happens: > > [john at lt-131-jdl-f7 ~]$ ssh -Y -p 2222 192.168.0.1 > john at 192.168.0.1's password: > Connection to 192.168.0.1 closed by remote host. > Connection to 192.168.0.1 closed. > > And yes, the account does exist and the password is correct! > > Looking at the logs, I see this: > > Jun 7 18:51:37 moray1 sshd(pam_unix)[11348]: authentication failure; > logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.209 user=john > Jun 7 18:51:46 moray1 sshd[11348]: Accepted password for john from > ::ffff:192.168.0.209 port 57755 ssh2 > Jun 7 18:51:46 moray1 sshd(pam_unix)[11352]: session opened for user > john by (uid=500) > Jun 7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed > opening loginuid Jun 7 18:51:46 moray1 pam_loginuid[11352]: > set_loginuid failed > Does any of this make sense? > > I've tried it on three different clients and get the same thing every > time. > > JDL > > Jun 7 18:51:46 moray1 sshd[11352]: fatal: PAM session setup > failed[14]: Cannot make/remove an entry for the specified session > > > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >any updates lately? I'm wondering if they may be some conflicts with pam. try disabling pam in /etc/ssh/sshd_config, and restart sshd.
John Lagrue wrote:> All of a sudden I can no longer ssh into my server running CentOS 4.5 > > This is what happens: > > [john at lt-131-jdl-f7 ~]$ ssh -Y -p 2222 192.168.0.1 > john at 192.168.0.1's password: > Connection to 192.168.0.1 closed by remote host. > Connection to 192.168.0.1 closed. > > And yes, the account does exist and the password is correct! > > Looking at the logs, I see this: > > Jun 7 18:51:37 moray1 sshd(pam_unix)[11348]: authentication failure; > logname= uid=0 euid=0 tty=NODEVssh ruser= rhost=192.168.0.209 user=john > Jun 7 18:51:46 moray1 sshd[11348]: Accepted password for john from > ::ffff:192.168.0.209 port 57755 ssh2 > Jun 7 18:51:46 moray1 sshd(pam_unix)[11352]: session opened for user > john by (uid=500) > Jun 7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed opening > loginuid Jun 7 18:51:46 moray1 pam_loginuid[11352]: set_loginuid failed > Does any of this make sense? > > I've tried it on three different clients and get the same thing every time. > > JDL > > Jun 7 18:51:46 moray1 sshd[11352]: fatal: PAM session setup failed[14]: > Cannot make/remove an entry for the specified sessionwhat does /var/log/secure say?