1 |
On Sun, Dec 06, 2009 at 02:48:36PM +0000, Alan Mackenzie wrote |
2 |
> Hi, folks! |
3 |
> |
4 |
> I'm trying to get sshd working on an embryonic Gentoo installation on my |
5 |
> laptop. The reason is that I want to ssh from my nice comfy desktop |
6 |
> system into this laptop to do the rest of the installation stuff. |
7 |
> |
8 |
> The installation kernel with which I'm having problems is: |
9 |
> Linux livecd 2.6.30-gentoo-r8 #1 SMP Tue Nov 3 11:40:51 UTC 2009. |
10 |
> |
11 |
> Having started sshd on my laptop, when I do |
12 |
> |
13 |
> ssh -lroot 192.168.2.101 |
14 |
> |
15 |
> from my desktop, I get prompted for my ssh key's pass phrase, which I |
16 |
> enter. Thereafter, nothing happens, and it continues to happen for a |
17 |
> long, long time. |
18 |
|
19 |
Has your install gotten to the stage where you can chroot and emerge |
20 |
and unmerge. If so, I would suggest the following... |
21 |
1) unmerge pam. *DO NOT LOGOUT OR REBOOT* |
22 |
2) put the line |
23 |
sys-libs/pam |
24 |
in /etc/portage/package.mask Create the file if it doesn't exist. |
25 |
3) emerge shadow *BEFORE YOU LOG OUT OR REBOOT*. |
26 |
|
27 |
Pam is an extra-high-security option that makes sense on a public |
28 |
server with lots of people being able to log in. On a personal laptop |
29 |
it is overkill. There was a comedy album once that was called... |
30 |
"Everything You Know Is Wrong". That describes Pam. The security |
31 |
settings for various services are in totally different files and |
32 |
locations than normal. |
33 |
|
34 |
Are you still booting from the install CD? The way you are running |
35 |
sshd is not how the install manual suggests to do it. The webpage... |
36 |
http://www.gentoo.org/doc/en/handbook/handbook-x86.xml?part=1&chap=2 |
37 |
shows that you can pass the kernel options... |
38 |
|
39 |
dosshd passwd=temppassword |
40 |
|
41 |
at bootup, where "temppassword" is a temporary password. This allows |
42 |
you to log in by typing the temporary password. |
43 |
|
44 |
-- |
45 |
Walter Dnes <waltdnes@××××××××.org> |