• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

ssh

  1. Kay

    sshd "PasswordAuthentication no" has no effect

    Hi I'm trying to disable password login for all users except one, "foo". That way, for example, I can login as "bar" with public key but not password. And I can login as "foo" with password. I tried this config: AllowUsers foo bar Match User !foo PasswordAuthentication no Match all #...
  2. T

    IPFW authpf alternative?

    I have a use case for authpf. However, I'd prefer to stick with IPFW as it seems to be more maintained and more recent than the included PF version. However, I've been unable to locate an alternate option that'll work with IPFW. Maybe I'm missing something, or maybe there's another way...
  3. R

    Solved ssh: why i cannot use Public key with users not in wheel group ?

    Hi, I try to use a ssh connection with Public Key (ECDSA) In client: I create a private/public key ssh-keygen -t ecdsa i choose filename: id_ecdsa_toto In remote server: IP:AAA.BBB.CCC.DDD I create a new user: toto. toto is not in wheel group. I add my public key id_ecdsa_toto.pub in...
  4. lebarondemerde

    keychain doesn't actually set env.

    Hello, I am trying to get security/keychain to work but I am experiencing a problem with it not actually setting the env: SSH_AUTH_SOCK and SSH_AGENT_PID. It starts and apparently set everything as expected but does not work when I try to use ssh, unless I set the variables manually later...
  5. cira8u

    ssh disconnects when starting gkrellm

    When using ssh to connect to FreeBSD 11.0 the link will occasionally shut down with the following in /var/log/messages Aug 23 14:45:11 karen sshd[62451]: fatal: Fssh_packet_write_poll: Connection from 174.77.777.77 port 57670: Permission denied If no program is running in the shell, the link...
  6. Kay

    Best way to allow ssh connection just for reverse port forwarding

    So here's my scenario. * I have a home server (HostB) which is completely within my control. * I have an off-site machine that can potentially be physically accessed by other people I don't trust (HostA). I want to do off-site backups (encrypted of course) via `duplicity` from HostB to...
  7. J

    Require Google Authenticator for SSH, except for whitelisted source IPs

    Hello. Has anyone worked out a way of enabling Google Authenticator (security/pam_google_authenticator) on a FreeBSD host to require one-time passwords for ssh connections, except for those from a whitelisted IP address range? I need to add this extra layer of protection to my hosted server as...
  8. P

    Solved Remote execution via Ruby-SSH starts different shell

    Hello, we are using net/ssh in Ruby to execute scripts on a FreeBSD machine, in order to do some checks for Nagios. Actually it is a brand new Pfsense applicance. The code is roughly the following: Net::SSH.start(@host, @user, {:password=>@pass}) do |ssh| erg=ssh.exec! "ls -al" p erg end...
  9. J

    PF Why does reloading pf.conf kill my ssh session?

    Hello, each time I reload my pf.conf using the command: pfctl -F all -f /etc/pf.conf my ssh session dies. It does not just hang for a few seconds. It simply dies and I have to launch a new one. This happens even though both the old and the new configurations allow incoming connexion to the ssh...
  10. E

    SSH Over IPV6 Possible Bug

    I've been trying to setup ssh exclusively over IPV6 but have run in to a few issues. These are the steps I'm following, theoretically this should just work. Which is why I'm baffled at this point. I researched a few guides going back to version 10.3 and the process seems to be as follows...
  11. aragats

    Solved Simple VPN: need an advice

    What would be the easiest way to provide access to the "End devices" on the picture? I need accessing just a few TCP/IP ports. I can use SSH port forwarding, maybe using security/autossh to make it persistent (in pfSense?). Would it be reliable? A fully functional VPN maybe an overkill for this...
  12. A

    Issue with connection (operation_not_permitted)

    Hello! I've installed FReeBSD 11 on my client mashine. On my server I have also FreeBSD 11. My client has 3G modem which successfully connects through ppp daemon to the cellurar network. After that my client successfully establish L2TP IPSec connection to my server. After that I connect to my...
  13. W

    How to set up SSH for both github and bitbucket?

    I have FreeBSD 10.3 AMD64. I have a github account, but I thought I would like a private repo as well, so I got a bitbucket account. I set up ssh for bitbucket, and would like to do so for github as well. But how will git not become confused as to which remote I am trying to sync with? I...
  14. D

    SSH can't connected : expecting SSH2_MSG_KEX_ECDH_REPLY with FreeBSD 10.1

    All right gone until move my desktop with 2 PC (pc1:FreeBSD 10.1, pc2:Windows 7 pro) I use all days connection on my server in data housing with SSH via VPN routers. Now, I can connect on my server with pc2 on Putty. But I can't connect with pc1. I don't understand. # ssh -vv...
  15. Petr Fischer

    automounting/autofs ssh filesystems

    Hello, I am finally using automount/autofs for mounting home samba shares (and my BlackBerry 10 phone, which has also Windows sharing enabled [samba inside]). Work reliably even with laptop sleeps and moving between networks (proper timeouts, no hangs etc.). My /etc/auto_master file...
  16. DavidMarec

    ZFS send/recv via ssh hangs

    I was using the send/recv ZFS command to upload snaphots from a server to another via ssh. There were no issue while both were running 10.3-RELEASE. But, since I upgraded the receiver to 11-RELEASE, the process hangs while sending or receiving the 2nd set. First set, root@mySnap is well...
  17. M

    Can only ssh remotely with new hostname, not on local wifi

    I just set up port forwarding (port 22) on my router (ip of 192.168.1.1). Now I can ssh into my server (ip of 192.168.1.7) remotely (from another internet connection) using its new static domain name I made with the www.noip.com service. However that new host name doesn't work when I'm on the...
  18. puppyboy

    Solved Does FreeBSD (or ssh clients) push keys without being told to?

    My server was previously running RHEL, with password logins disabled and pki authentication required. I replaced it with FreeBSD 11.0 on Monday, and today I was going to go ahead and take care of setting that up with the new OS. I had previously logged in with a password under the default...
  19. M

    Unable to ssh (locked out) after upgrade from 10.1 to 10.3

    I followed the update instructions here to update from 10.1 to 10.3. My only way of accessing this server is via ssh, and I have now been locked out (the ssh address is no longer known by my PC). Are there any steps to take / configurations to check to prevent this from happening again? I cannot...
  20. M

    Solved rsync on FreeBSD Live-CD - possible?

    Hello. I have virtual drive with UFS partitions, I need to boot Live-CD and use rsync to COPY files from remote server to this virtual HDD ("clone" the system). I want to boot from this virtual HDD (I'm using Virtualbox). So the only one obstacle is that none of the .iso-files (*dvd1.iso and so...
Top