George N. White III wrote on 26-NOV-2019 14:26:34.37
On Tue, 26 Nov 2019 at 08:36, Jouk Jansen joukj@hrem.nano.tudelft.nl wrote:
Hi All,
I'm trying to setup an ssh-server on F31 which logs a user in without a
[snip]
Question : why does is work with just running "/usr/sbin/sshd" but not wi=
th
"systemctl start sshd" ?
When your root ran /usr/sbin/sshd was the very long list of options used when sshd is started by systemd included? I see:
$ sudo systemctl status sshd |fold =E2=97=8F sshd.service - OpenSSH server daemon [...] CGroup: /system.slice/sshd.service =E2=94=94=E2=94=80994 /usr/sbin/sshd -D -oCiphers=3Daes256-gcm@o=
On my machine I only get <number> /usr/sbin/sshd -D here
Jouk
Pax, vel iniusta, utilior est quam iustissimum bellum. (free after Marcus Tullius Cicero (106 b.Chr.-46 b.Chr.) Epistularum ad Atticum 7.1.4.3)
Touch not the cat bot a glove
------------------------------------------------------------------------------<
Jouk Jansen joukj@hrem.nano.tudelft.nl
Technische Universiteit Delft tttttttttt uu uu ddddddd Kavli Institute of Nanoscience tttttttttt uu uu dd dd Nationaal centrum voor HREM tt uu uu dd dd Lorentzweg 1 tt uu uu dd dd 2628 CJ Delft tt uu uu dd dd Nederland tt uu uu dd dd tel. 31-15-2782272 tt uuuuuuu ddddddd
------------------------------------------------------------------------------<
Try running the ssh command which is attempting to login with the -v -v -v options, then you can see what it is trying and what didn't work.
If it is an old enough system it may not share any ciphers with the new f31 system as they have disabled a lot of old ciphers by default.
-
Jouk Jansen -
Tom Horsley