LinHES Forums :: View topic - Cannot SSH after upgrade

6) Remote access changes:

6.1) For improved security, direct ssh access as the "mythtv" and "root" users and for users with blank passwords has been disabled in /etc/ssh/sshd_config. For ssh access as root you must login as user created during phase 1 installation, run "su - root", and provide the root password.

It's generally a good idea to provide a link to the R5F1 hints. That way at least some folks take the clue and read the rest of it... ;-)

Author:	ed3120 [ Sat Aug 11, 2007 9:23 am ]
Post subject:	Cannot SSH after upgrade
I just upgraded to R5F1. Now, when I try to SSH from another box on my network, I can connect, but when I try to login as root, my password keeps failing. If I log locally to my myth box as root, the same password works. I don't know what could be happening here.

Author:	goofnrox [ Sat Aug 11, 2007 9:30 am ]
Post subject:
It is set that way purposely in R5F1. You can log in as another account and SU if you need root access. From "The Guide" Quote: 6) Remote access changes: 6.1) For improved security, direct ssh access as the "mythtv" and "root" users and for users with blank passwords has been disabled in /etc/ssh/sshd_config. For ssh access as root you must login as user created during phase 1 installation, run "su - root", and provide the root password.

Author:	ed3120 [ Sat Aug 11, 2007 9:38 am ]
Post subject:
OK, I understand the security benefits of enforcing that. I just didn't realize it was implemented. Is there a place to change this default?

Author:	goofnrox [ Sat Aug 11, 2007 9:40 am ]
Post subject:
It is set that way purposely in R5F1. You can log in as another account and SU if you need root access. From "The Guide" Quote: 6) Remote access changes: 6.1) For improved security, direct ssh access as the "mythtv" and "root" users and for users with blank passwords has been disabled in /etc/ssh/sshd_config. For ssh access as root you must login as user created during phase 1 installation, run "su - root", and provide the root password.

Author:	tjc [ Sat Aug 11, 2007 11:19 am ]
Post subject:
It's generally a good idea to provide a link to the R5F1 hints. That way at least some folks take the clue and read the rest of it...

LinHES Forums http://forums.linhes.org/

Cannot SSH after upgrade http://forums.linhes.org/viewtopic.php?f=6&t=16108	Page 1 of 1

Author:	goofnrox [ Sat Aug 11, 2007 3:58 pm ]
Post subject:
tjc wrote: It's generally a good idea to provide a link to the R5F1 hints. That way at least some folks take the clue and read the rest of it... Yup The Guide

Author:	randomhtpcguy [ Thu Aug 16, 2007 6:34 pm ]
Post subject:	script to restart slave backend sbe from master using ssh
Previously, I used a script that would use id_rsa.pub from the master backend server user mythtv put into authorized_keys of mythtv on my slave backend server. The key-gen -t rsa i created was a a blank password. this allowed me to issue the command ssh mythtv@mythtvslave /etc/init.d/mythtv-backend start from the master backend. I used this command at the end of /etc/init.d/bootmisc.sh to automatically restart the tuners on the slaves after a master reboot and after a mythbackup. This was extremely useful. I would like a secure way to do this. Any ideas. I could do it as another user but the sudoers stuff is confusing to me right now. Also, wouldn't this be a very useful feature for others with a slave setup? I will try to undo the changes listed above, but maybe that isn't the best longtime solution

Author:	tjc [ Thu Aug 16, 2007 6:57 pm ]
Post subject:
Undoing the change is literally a matter of deleting or commenting out one very obvious line in the file noted, and restarting sshd. It's not rocket science.

Page 1 of 1	All times are UTC - 6 hours
Powered by phpBB® Forum Software © phpBB Group http://www.phpbb.com/