SSH issues...
Lowell Hamilton
plug-discuss@lists.PLUG.phoenix.az.us
Tue, 4 Dec 2001 18:43:24 -0800 (PST)
That has the signature of an exploited machine. I have seen several of
these with the same issues. When people exploit the CRC-32 ssh hole,
the rootkits disable ssh to keep others from using the same exploit,
and it has the affect of locking legit users out as well. I'm not
saying it's guaranteed to be it, but it is possible. If you used any
redhat distribution or several others they come default with an old
(pre v2.9) OpenSSH which is vulnerable.
Lowell
--- Thomas Mondoshawan Tate <phoenix@psy.ed.asu.edu> wrote:
> Okay guys, I'm having a few SSH authentication issues with a server I
> recently setup. Every time I try to do an 'ssh -C <ip here>' and it
> asks for
> my password, I get a "permission denied, please try again." message.
> Yes,
> I'm attempting to login as a user I know exists and has the password
> I need,
> and the configuration settings are stock. SSH is running via inetd.
> Any ideas?
>
> --
> Thomas "Mondoshawan" Tate
> phoenix@psy.ed.asu.edu
> http://tank.dyndns.org
>
> ATTACHMENT part 2 application/pgp-signature
__________________________________________________
Do You Yahoo!?
Buy the perfect holiday gifts at Yahoo! Shopping.
http://shopping.yahoo.com