[Eisfair_dev] [e1] sshd startet nicht mehr

W. Loefstedt oliaros at web.de
Di Okt 1 19:52:51 CEST 2024


Am 26.09.2024 um 13:55 schrieb Marcus Röckrath:

> Ok, mich würde es allerdings auch nicht wundern, wenn die sterbende Hardware
> das Problem verursacht hat.

Hallo Marcus,
das Mainboard ist repariert, alles funktioniert wieder bis auf den sshd. 
Die conf sieht folgendermassen aus:

#------------------------------------------------------------------------------
# /etc/config.d/ssh - configuration file for ssh
#
# Creation   :  2012-09-15 hbfl
# Last Update:  2024-10-01 root
#
# Copyright (c) 2001-2024 the eisfair team, team(at)eisfair(dot)org
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#------------------------------------------------------------------------------

# OpenSSH-VERSION 3.4.3

#------------------------------------------------------------------------------
# SSH - secure shell (general settings)
#------------------------------------------------------------------------------

START_SSH='yes'
                                   # start ssh 'yes' or 'no'
SSH_PORT='22222'
                                   # ssh port, see also FIREWALL_DENY_PORT_x

#------------------------------------------------------------------------------
# SSH - secure shell (protocol settings)
#------------------------------------------------------------------------------

SSH_SERVER_CIPHERS='all'
                                   # allowed ciphers
SSH_SERVER_KEXS='all'
                                   # allowed (Key Exchange) algorithms
SSH_SERVER_MACS='all'
                                   # allowed MAC (message authentication
                                   # code) algorithms

#------------------------------------------------------------------------------
# SSH - secure shell (listen address settings)
#------------------------------------------------------------------------------

SSH_LISTEN_ADDR_N='0'
                                   # Number of addresses sshd should 
listen to
                                   # 0 - listen on all local addresses
SSH_LISTEN_ADDR_1_NAME=''
                                   # Use a name, its only for you
SSH_LISTEN_ADDR_1_ACTIVE='yes'
                                   # Use: yes or no
SSH_LISTEN_ADDR_1='1'
                                   # First ip address, sshd should listen to
                                   # use n'th ethernet card configured in
                                   # /etc/config.d/base.
                                   # E.g. SSH_LISTEN_ADDR_1='2' points to
                                   # IP_ETH_2_IPADDR in /etc/config.d/base.


#------------------------------------------------------------------------------
# SSH - secure shell (allow/deny settings)
#
#
# Please use this settings with care.
# All four lists are checked when a login is
# done. So wrong settings could exclude an
# important user (e.g. root or eis) from login.
#------------------------------------------------------------------------------

SSH_ALLOW_USER_N='2'
                                   # Number of user name patterns.
                                   # Login is allowed only for user names
                                   # that match one of the pattern. '*' and
                                   # '?' can be used as wildcards in the
                                   # patterns.
                                   # Default: 0 - login is allowed for 
all users.
SSH_ALLOW_USER_1_NAME=''
                                   # Use a name, its only for you
SSH_ALLOW_USER_1_ACTIVE='yes'
                                   # Use: yes or no
SSH_ALLOW_USER_1='root'
                                   # First user name pattern.

SSH_ALLOW_USER_2_NAME=''
                                   # Use a name, its only for you
SSH_ALLOW_USER_2_ACTIVE='yes'
                                   # Use: yes or no
SSH_ALLOW_USER_2='oliaros'
                                   # First user name pattern.

SSH_DENY_USER_N='0'
                                   # Number of user name patterns.
                                   # Login is disallowed only for user names
                                   # that match one of the pattern. '*' and
                                   # '?' can be used as wildcards in the
                                   # patterns.
                                   # Default: 0 - login is allowed for 
all users.
SSH_DENY_USER_1_NAME=''
                                   # Use a name, its only for you
SSH_DENY_USER_1_ACTIVE='no'
                                   # Use: yes or no
SSH_DENY_USER_1='batch'
                                   # First user name pattern.

SSH_ALLOW_GROUP_N='0'
                                   # Number of group name patterns.
                                   # Login is allowed only for users whose
                                   # primary group or supplementary group
                                   # matches one of the pattern. '*' and 
'?' can
                                   # be used as wildcards in the patterns.
                                   # Default: 0 - login is allowed for 
all groups.
SSH_ALLOW_GROUP_1_NAME=''
                                   # Use a name, its only for you
SSH_ALLOW_GROUP_1_ACTIVE='no'
                                   # Use: yes or no
SSH_ALLOW_GROUP_1='root'
                                   # First group name pattern.

SSH_DENY_GROUP_N='0'
                                   # Number of group name patterns.
                                   # Login is disallowed only for users 
whose
                                   # primary group or supplementary group
                                   # matches one of the pattern. '*' and 
'?' can
                                   # be used as wildcards in the patterns.
                                   # Default: 0 - login is allowed for 
all groups.
SSH_DENY_GROUP_1_NAME=''
                                   # Use a name, its only for you
SSH_DENY_GROUP_1_ACTIVE='no'
                                   # Use: yes or no
SSH_DENY_GROUP_1='batch'
                                   # First group name pattern.

SSH_PERMITROOTLOGIN='without-password'
                                   # Secifies whether root can login 
using ssh.
                                   # 'yes' User root can login.
                                   # 'no' User root can't login.
                                   # 'without-password' Password 
authentication
                                   # for user root is disabled. Note 
that other
                                   # authentications (e.g. 
keyboard-interactive/
                                   # PAM) may still allow root to login 
using a
                                   # password.
                                   # 'forced-commands-only' root login with
                                   # public key authentication will be 
allowed,
                                   # but only if the command option has been
                                   # specified.

#------------------------------------------------------------------------------
# SSH - secure shell (public key settings for user root)
#------------------------------------------------------------------------------

SSH_PUBLIC_KEY_N='1'
                                   # number of public keys or keyfile to add
                                   # to /root/.ssh/authorized_keys
SSH_PUBLIC_KEY_1_NAME=''
                                   # Use a name, its only for you
SSH_PUBLIC_KEY_1_ACTIVE='yes'
                                   # Use: yes or no
SSH_PUBLIC_KEY_1='***************************************************'
                                   # public key (identity.pub) generated
                                   # by ssh-keygen
                                   # If the first character is a slash (/)
                                   # the value is interpreted as an absolut
                                   # pathname of a file. The content of this
                                   # file is added to the file
                                   # /root/.ssh/authorized_keys


#------------------------------------------------------------------------------
# SSH - secure shell (additional settings)
#------------------------------------------------------------------------------

SSH_MAX_STARTUPS='5'
                                   # maximum number of concurrent 
unauthenticated
                                   # connections. default: 10
SSH_COMPRESSION='yes'
                                   # allow compression: 'yes' or 'no'
SSH_STRICTMODES='yes'
                                   # Use Strictmodes: 'yes' or 'no'
SSH_PASSWDAUTH='yes'
                                   # Allow password authentication 'yes'
                                   # or 'no'. If password authentication
                                   # is not allowed you have to use key
                                   # authentication. Check that key
                                   # authentication works fine before you
                                   # set SSH_PASSWDAUTH to 'no'.
SSH_CH_RESPONSEAUTH='yes'
                                   # Allow challenge response authentication
                                   # 'yes' or 'no'.
SSH_CLIENTALIVEINTERVAL='0'
                                   # Timeout interval in seconds for
                                   # client alive message.
                                   # Default: 0 - no message
SSH_CLIENTALIVECOUNTMAX='2'
                                   # Number of client alive messages
                                   # until disconnection.
                                   # Default: 3

#------------------------------------------------------------------------------
# SSH - secure shell (subsystem settings)
#------------------------------------------------------------------------------

SSH_ENABLE_SFTP='yes'
                                   # activate sftp: 'yes' or 'no'

#------------------------------------------------------------------------------
# SSH - secure shell (log level settings)
#------------------------------------------------------------------------------

SSH_LOGLEVEL='VERBOSE'
                                   # Verbosity level that is used when
                                   # logging messages from sshd.
                                   # Values QUIET FATAL ERROR INFO VERBOSE
                                   # DEBUG DEBUG1 DEBUG2 DEBUG3 are allowed.
                                   # Default: INFO
                                   # Logging with a DEBUG level violates
                                   # the privacy of users and is not
                                   # recommended.

#------------------------------------------------------------------------------
# End
#------------------------------------------------------------------------------


Hast du eine Idee?

Danke und Gruss,

Wolfgang


Mehr Informationen über die Mailingliste Eisfair_dev