1. leebrown66

    Setup a 2nd sshd instance for testing remote configurations

    Suppose you have a remote machine that you can ssh into. You want to make some changes to the config, but making a mistake could lock you out of the box. This is a technique for setting up a 2nd sshd instance and also how to configure it as a service. Standalone On the server enter...
  2. Kay

    sshd "PasswordAuthentication no" has no effect

    Hi I'm trying to disable password login for all users except one, "foo". That way, for example, I can login as "bar" with public key but not password. And I can login as "foo" with password. I tried this config: AllowUsers foo bar Match User !foo PasswordAuthentication no Match all #...
  3. poorandunlucky

    ZFS ARC and SSHDs

    I have a solid state hybrid drive with a 32 GB NAND cache... I set the ARC to 1 GB before knowing what it was at all, but can I just turn it off altogether since I already have that?
  4. cira8u

    ssh disconnects when starting gkrellm

    When using ssh to connect to FreeBSD 11.0 the link will occasionally shut down with the following in /var/log/messages Aug 23 14:45:11 karen sshd[62451]: fatal: Fssh_packet_write_poll: Connection from 174.77.777.77 port 57670: Permission denied If no program is running in the shell, the link...
  5. D

    PAM Radius Config

    Ok new problem today. I'm being asked to connect all of my FreeBSD 11.0 Servers to a radius server for ssh. I have created the /etc/radius.conf file and added my servers both auth and acct lines with the secret. auth server1.f.q.d.n secret acct server1.f.q.d.n secret I have modified my...
  6. HL1234

    Solved Creating of DSA Key in /etc/ssh is disabled?

    Hello, if I try to recreate the keys for sshd with /etc/rc.d/sshd keygen the private key ssh_host_dsa_key and public key are not created. I take a look into the script /etc/rc.d/sshd and found .... : ${sshd_rsa1_enable:="no"} : ${sshd_rsa_enable:="yes"} ...
  7. S

    restrict sftp and block ssh except root

    Hi all, I have a sftpgroup and I want the user's of this group only can use sftp and nobody can't ssh. this is my sshd config: Match Group *,!sftpgroup X11Forwarding no ChrootDirectory %h AllowTcpForwarding no ForceCommand internal-sftp Now, I want to root only can ssh to my...

    SSHD performance FreeBSD vs GNU/Linux

    Hello! After some testing I've found out that my FreeBSD sshd daemon takes more CPU time than other OS (11% vs 6%). The same usage for 20Mb/s and for 90Mb/s. It doesn't matter from where I start SSH session. Please look at the following information. #1 OS: FreeBSD 11.0-RELEASE-p3 #2 Other...
  9. D

    SSH can't connected : expecting SSH2_MSG_KEX_ECDH_REPLY with FreeBSD 10.1

    All right gone until move my desktop with 2 PC (pc1:FreeBSD 10.1, pc2:Windows 7 pro) I use all days connection on my server in data housing with SSH via VPN routers. Now, I can connect on my server with pc2 on Putty. But I can't connect with pc1. I don't understand. # ssh -vv...

    sshd via two ISP

    I have two ISP connected to server and run sshd daemon for two IPs. Unfortunately, I can connect only via first IP. I can ping from both IPs. Please look at my configs. NETSTAT: Proto Recv-Q Send-Q Local Address Foreign Address (state) tcp4 0 0 A.B.C.D.22 *.*...
  11. W

    Solved What level of devfs_ruleset is more secure?

    Hey guys, I am working on my git server, and SSH its claiming about have no access to /dev/tty inside of jail. After read about this issue, I have found is need setup on /etc/rc.conf to start it using: devfs_load_rulesets="YES" And on my jail.conf I need use devfs_ruleset, the level 3 and 5...
  12. G

    Jail sshd fails to listen to ipv6 address

    I have a jail running and the network configuration is done by the host's /etc/jail.conf. The behavior is that when the jail boots, sshd listens to the correct ipv4 address listed in the /etc/ssh/sshd_config, however it doesn't listen to the ipv6 address. I did attempt to set it to :: to see if...
  13. J

    Changed the ssh port. Now SFTP does not work anymore.

    Hello guys. I just changed my SSH port number to 3232. The SSH connection is working, but when I tried to make it on SFTP, FileZilla says: Command: open "jeff@...." 3232 Error: Connection timed out Error: Could not connect to server The pf.conf file is also already configured to the new...
  14. W

    Solved got scrambled text in ssh randomly

    today I'm update my system to 10.1-p26 and then I found the power supply are failure so it can't boot after I changed the power supply, I can login the system, but start got scrambled text it appears randomly on any screen output for example, run ls on /etc twice: # ls X11...