With my sshd installation, I have password authentication disabled, and only accept key-based auth. What I want to do is, make sshd lie about it's accepted authentication methods, or even make up a few to confuse anyone who's trying to connect. For example,
[root@vps2 ~]# ssh hah.cx
Permission denied (publickey).
I'd like to make it show something like,
[root@vps2 ~]# ssh hah.cx
Permission denied
Who knows VPS provider (located anywhere) accepting e-gold for payments?
View 3 Replies View RelatedI am planning to build my own site, but the problem is that I still don't have a domain and a hosting site..
I wanted to buy one but they all requested for a credit card number.. I'm still a student now and unfortunately I have no credit card..
Does anyone know any other way of paying those hosting sites and registering a domain w/o using credit card or something..
Or maybe since i'm still new, should I go for free hosting then? but my site uses MySql for database, is there a free hosting site that lets you use a database?
I am on a server with ssh disabled and automated cpanel backups disabled. I would like to back up all of my client accounts to my laptop in one go. So far, I think I've come across two options:
Option 1: rsync w/o SSH
I am not sure how to do this. Most tutorials I've found use ssh, and I can't figure out what other options there are.
Option 2: write a script that backs up all accounts and places them into a file on the server which I can then download.
Which option is better? Is there anything else I can do? I've been at this all day and haven't found a good solution.
Having an issue with random individuals trying to access an intranet site with a security certificate. Most users are able to simply select their Smartcard/CAC certificate, enter the pin number and then are granted access to the site's pages.
However, random individuals enter their pin and then are immediately re-prompted by the IE alert dialogue to enter their domain username and password. If they don't enter their network domain username and MS password, then they receive a 401.1 Unauthorized.
I am confused as to why these certain users (who are selecting the same certificates as the successful ones) are being prompted for their domain name/pwd. Furthermore, they're able to access other sites which require a CAC to get past the security certificate.
Possible that a user token is unable to be established via a CAC for the particular site, but not sure why. Since these users are getting a 401.1, then somehow their identity associated with their CAC credentials is not validating.
In IIS: Anonymous users are not allowed (unchecked). 128-bit encryption is required with SSL. Integrated Windows Authentication is checked. Accepting client certificates In the site's web.config file all users are allowed and only anonymous are denied.
Developed in asp.net 3.5
We have tried to reproduce the problem in testing and development environments, but have fortunately/unfortunately been unable to duplicate this issue. This furthermore eludes to an issue that might be isolated to the production server, users access to it, and/or the certificate that is applied to that SSL website on that server.
The exact same setup is present on the development box without any issues at all, indicating to me that the problem resides on the production server's ability to properly receive/handle CAC information from those individuals or that something funky is going on with the way the security certificate is relating to the client's CAC x.509 certificate.
A little more information that may be of use: the browser prompt that initially asks for the CAC has nothing to do with the code of the site, but rather is enabled by applying the security certificate to a site in IIS; thus indicating to me that there is something written into the certificate that looks for client certificates tied to the ActivClient agent via the browser?
The violating users' cards work on all other applications and even on SSL sites on other servers that bring up a CAC prompt. I believe we have confirmed that the certificates associated with their cards and their IE browsers are valid through 2015 (or longer in some cases), and are the same in nature (x509 certificate from the card)... and issuer is being consistently selected as DOD Email CA-15 (though the regular DOD CA-15 works as well). Again, maybe something with the fact that it's isolated to one production server, something with the SSL cert. on that url or user access?
Then again, I probably have no idea what i'm talking about, just throwing a bone here to see if anyone has had the same issue or has any ideas.
i can't connect to ssh.. I did try to restart ssh on whm but it is says
Quote:
Waiting for sshd to restart.... . . . . . . . . . . finished.
Jan 27 19:03:06 server2 sshd: sshd -TERM succeeded Jan 27 19:03:06 server2 sshd: succeeded sshd has failed, please contact the sysadmin.
I can't login to SSH in my Server, I'm triying to restart SSH from cPanel and says:
Quote:
Waiting for sshd to restart.... . . . . . . . . . . finished.
sshd status
root 15368 1.0 1.4 23720 22064 ? S 02:15 0:00 /usr/local/cpanel/whostmgr/bin/whostmgr ./ressshd
Jul 3 02:15:31 server sshd: Stopping sshd failed Jul 3 02:15:31 server sshd: succeeded sshd has failed, please contact the sysadmin.
And, how i can Reinstall MySQL?
Very quick question please post if neither of the above. If you were to order hosting online which would you use: paypal or google checkout?
Any others please post below?
I have Plesk 11.5.30 Update #47, Centos OS 6.5 x64, MTA Qmail 1.03
Today I encountered a estrange thing, a disabled mailbox was accepting mail but not bouncing it.
In the panel the "user@tld.com" mailbox is disabled, if a email is sent to that address Qmail accepts it:
Jul 4 17:51:35 mx3 qmail-queue-handlers[27432]: Handlers Filter before-queue for qmail started ...
Jul 4 17:51:36 mx3 qmail-queue-handlers[27432]: from=root@mx3
Jul 4 17:51:36 mx3 qmail-queue-handlers[27432]: to=user@tld.com
Jul 4 17:51:36 mx3 qmail-queue-handlers[27432]: handlers_stderr: SKIP
[Code] ....
No mail is bounced, nothing, the message is not in the mailbox.
Tested in several accounts the result is the same, even in a new created account.
/dev/sda1 is mounted to / on my dedicated server, however, it is 100% full and cPanel is having problems with it. Is there a way I can clean out some files?
Additionally, I cannot SSH into the server since sshd keeps failing. Anyone know what I can do?
I'm sure /dev/sda1 isn't usually mounted to / but who knows.
I am trying to customize the knoppix CD so that the SSH server can be started while the system has been booted up. I've tried to install the service and setup the appropriate run level (update-rc.d) but still the SSH daemon couldn't be started up automatically. I had to start it up manually while the system is booted up. I have an idea is to put the startup command in the /etc/rc.local, but not sure if that would work, but I prefer to start it up from the run-level. And what about the /etc/inittab, any idea on that?
View 2 Replies View Relatedinstalling Debian. I choose Standard package without anything, No DNS Server, No Web Server, No Mail Server.
But ssh is not working, how do I install sshd and get it work?
What are the different methods to drop DDOS attack?
View 10 Replies View RelatedI have LAMP -server running and I was wondering how to test it's performance.
So is there any good tools for that? I'm interest how many http queries my server could handle etc.
i have hypervm(openvz)
named is failed
smapd is failed
and i can`t enter to myssh
#service ssh status
#sshd dead but subsys locked
i use of cpanel
i have problem in SSH if i want to restart it its say:
sshd has failed, please contact the sysadmin
can any one tell waht i do?
Here I got a sshd issue, which confused me a lot. I just purchased a dedi yesterday.
cPanel11+WHM panel, Fedora7 system. When I use top -c to check the system, most of the times I would see four or five sshd processes "sshd: unknown [priv]" are running, and about 5 minutes later they will disappear.
Details can be viewed from this snapshot:
[url]
how do you guys reset the Administrator (for windows) and root password (linux)?
Do you guys use any kind of tools, boot-cd, software?
Going to be migrating over to another server pretty soon.
Does anyone have any easy methods for migrating my date/site from one server to another?
What are new methods to High secure a linux server ? (For webhosting company)
Please write something you know for Linux Security Methods (New version of OS).
I have a friend who usually manages my server, but he's been hard to contact, and these forums are officially my best friend
I figured out how to change the sshd config, and restarting the service to change the port. My friend installed a firewall due to ddos attacks, and I think i need to manually unblock the port that I would like to be the new sshd port. How can I find out what firewall I'm running, and where can I add a new port to the allow list?
will time i restarted server,ssh don`t run
give me error
sshd status root 25754 0.9 2.3 23264 21592 ? S 08:54 0:00 /usr/local/cpanel/whostmgr/bin/whostmgr ./ressshd
May 23 08:54:13 part5 sshd: Stopping sshd failed May 23 08:54:13 part5 sshd: succeeded sshd has failed, please contact the sysadmin.
from about 3-4 days, the cpu of my server, from an average of 0-15% load, grew up to a constant 80-90-100% cpu load.
There were two processes called php-cgi.exe IWAM_PLESK(default) that, each one, constantly burned 30-40% of cpu load.
So, stopping websites one by one, I found the website that was the cause of the cpu overload.
On my "old" windows vps, there were processes called with the name of the website hosted (for example websitename_web.exe), so it was easy to immediately find exactly what website was involved in the hypotetical cpu or ram overload issue.
I'm running a server where I have my SSH key set up with the root user so I can log in without the password.
I also have an account called "jmaskell" that I use for everything, and I'm trying to add my SSH key to this. I've done exactly what I did for the root user and have my key in the .ssh/authorized_keys2 file. Unfortunately I'm still prompted for my password everytime I log in.
Is it possible to have the same SSH key stored for two different users?
The server is running CentOS 4 with OpenSSH 3.9.
We've been having some trouble logging into our Intranet here at work. Essentially it is set up to use Integrated Windows authentication but for some reason that was disabled last week and so no-one could log in. That was easy enough to fix and everything seemed to be back to normal.
However, I installed ModX CMS into a subfolder but when it comes to logging in to the admin backend I am repeatedly asked for my Windows ID and ultimately told I am not authorised to view the page. I can see the login page and I can enter the ModX admin details but it won't let me further than that.
The strange thing is a colleague with the same (admin) rights can log in no problem!
