- 论坛徽章:
- 0
|
大家好,今天遇到了一个ssh问题,ssh居然断开连接,不让用户登陆,不管是哪个用户登录丢不可以。(普通用户 root用户都不可以)hosts.allow和host.deny都没有添加任何信息。
确定ssh配置文件没有修改过。
pam下的login文件如下:
# cat /etc/pam.d/login
#%PAM-1.0
auth [user_unknown=ignore success=ok ignore=ignore default=bad] pam_securetty.so
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
# pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session optional pam_keyinit.so force revoke
session required pam_loginuid.so
session include system-auth
session optional pam_console.so
# pam_selinux.so open should only be followed by sessions to be executed in the user context
session required pam_selinux.so open
pam下的sshd文件如下:
# cat /etc/pam.d/sshd
#%PAM-1.0
auth include system-auth
account required pam_nologin.so
account include system-auth
password include system-auth
session optional pam_keyinit.so force revoke
session include system-auth
session required pam_loginuid.so
message内核信息报错如下:
Nov 15 13:51:18 localhost kernel: sshd[19484] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
Nov 15 13:51:18 localhost kernel: sshd[19485] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
Nov 15 13:51:19 localhost kernel: sshd[19486] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
Nov 15 13:51:19 localhost kernel: sshd[19487] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
Nov 15 13:51:19 localhost kernel: sshd[19488] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
Nov 15 13:51:20 localhost kernel: sshd[19489] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
Nov 15 13:51:20 localhost kernel: sshd[19490] general protection rip:2b0d20f1b2d0 rsp:7ffff4edbbf8 error:0
secure日志如下:
Nov 15 11:19:19 localhostlogin: FAILED LOGIN 1 FROM localhost.localdomain FOR root, Authentication failure
Nov 15 11:19:20 localhost login: pam_securetty(remote:auth): access denied: tty 'pts/1' is not secure !
Nov 15 11:19:25 localhostlogin: FAILED LOGIN 2 FROM localhost.localdomain FOR root, Authentication failure
Nov 15 11:24:12 localhost login: pam_unix(remote:auth): authentication failure; logname= uid=0 euid=0 tty=pts/1 ruser= rhost=localhost.localdomain user=zhangshuao
Nov 15 11:24:15 localhost login: FAILED LOGIN 1 FROM localhost.localdomain FOR zhangshuao, Authentication failure
Nov 15 11:24:19 localhost login: pam_unix(remote:session): session opened for user zhangshuao by (uid=0)
Nov 15 11:24:19 localhostlogin: LOGIN ON pts/1 BY zhangshuao FROM localhost.localdomain
Nov 15 11:24:27 localhost su: pam_unix(su:session): session opened for user root by zhangshuao(uid=502)
Nov 15 11:25:06 localhost su: pam_unix(su:session): session closed for user root
Nov 15 11:25:12 localhost login: pam_unix(remote:session): session closed for user zhangshuao
我又开启了telnet服务来连接,配置完了重启以后 就连接了一次,之后在连接的话,telnet服务就拒绝连接了。
大家帮忙看看是啥问题。
|
|