Re: pam/sshd question: allowing a user to try logging in more than once

2004-11-10 Thread Jeremy Brown
Michael Sims wrote: Jeremy Brown wrote: Debian: Permission denied (publickey,keyboard-interactive). Fedora: Permission denied (publickey,password,keyboard-interactive). Perhaps getting PAM to spit out this extra data would be more, eh, amiable to PuTTY? That's some good info. I noticed tha

Re: pam/sshd question: allowing a user to try logging in more than once

2004-11-10 Thread Jeremy Brown
Michael Sims wrote: Are your users using PuTTY? For me, the problem only manifests itself with PuTTY, connecting from every other SSH client I tried gave the expected behavior (3 password requests). Actually, that seems to be the case here as well. I mostly use PuTTY, so I hadn't even tried t

RE: pam/sshd question: allowing a user to try logging in more than once

2004-11-10 Thread Michael Sims
Jeremy Brown wrote: > Check out my 2nd message. I'm authenticating against an LDAP server > and thus require PAM. Oops, sorry, I guess I didn't read carefully enough. > I know this can be done with PAM. I have a Fedora Core box that > authenticates against LDAP for OpenSSH (via PAM), and it req

Re: pam/sshd question: allowing a user to try logging in more than once

2004-11-09 Thread Jeremy Brown
Michael Sims wrote: Jeremy Brown wrote: The subject line is fairly self-explanatory. Currently users who connect to my debian testing machine at work are prompted for their username, then their password only once. If a user enters a bad password, he or she is kicked out immediately and must op

RE: pam/sshd question: allowing a user to try logging in more than once

2004-11-09 Thread Michael Sims
Jeremy Brown wrote: >> The subject line is fairly self-explanatory. Currently users who >> connect to my debian testing machine at work are prompted for their >> username, then their password only once. If a user enters a bad >> password, he or she is kicked out immediately and must open a new ss

Re: pam/sshd question: allowing a user to try logging in more than once

2004-11-09 Thread Jeremy Brown
Oops...I figure I should include my "common-auth" file too, as well as mention that I authenticate against LDAP: # # /etc/pam.d/common-auth - authentication settings common to all services # # This file is included from other service-specific PAM config files, # and should contain a list of the a

pam/sshd question: allowing a user to try logging in more than once

2004-11-09 Thread Jeremy Brown
The subject line is fairly self-explanatory. Currently users who connect to my debian testing machine at work are prompted for their username, then their password only once. If a user enters a bad password, he or she is kicked out immediately and must open a new ssh connection in order to try