grsecurity forums


https://forums.grsecurity.net./

SSH asks for password with RBAC

https://forums.grsecurity.net./viewtopic.php?f=3&t=2034

Page 1 of 1

SSH asks for password with RBAC

PostPosted: Tue Sep 02, 2008 3:31 am
by Hiawatha
I use SSH to switch to another account on my server. I use a SSH key so I don't have to type a password every time. When I enable RBAC, SSH asks for a password again. I use Debian with a 2.6.24.5 kernel and the latest grsec patch.

I've used the learning mode to create a policy for ssh, but that didn't help. I'd like some advice, please.

Re: SSH asks for password with RBAC

PostPosted: Tue Sep 02, 2008 5:33 am
by PaX Team
Hiawatha wrote:I use SSH to switch to another account on my server. I use a SSH key so I don't have to type a password every time. When I enable RBAC, SSH asks for a password again. I use Debian with a 2.6.24.5 kernel and the latest grsec patch.

I've used the learning mode to create a policy for ssh, but that didn't help. I'd like some advice, please.
post your policy for sshd, probably it doesn't get access to the user's .ssh/authorized_keys file (an strace -f on sshd could confirm it).

Re: SSH asks for password with RBAC

PostPosted: Tue Sep 02, 2008 12:09 pm
by Hiawatha
That's it. I had tried giving sshd read access to the files in ~/.ssh, but I guess I must have done something wrong then (probably put it in the config for ssh instead of the config for sshd). Thanks and sorry for troubling you with my stupid mistake.
All times are UTC - 5 hours [ DST ]
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/