| 1 |
On Sun, Dec 06, 2009 at 02:48:36PM +0000, Alan Mackenzie wrote |
| 2 |
> Hi, folks! |
| 3 |
> |
| 4 |
> I'm trying to get sshd working on an embryonic Gentoo installation on my |
| 5 |
> laptop. The reason is that I want to ssh from my nice comfy desktop |
| 6 |
> system into this laptop to do the rest of the installation stuff. |
| 7 |
> |
| 8 |
> The installation kernel with which I'm having problems is: |
| 9 |
> Linux livecd 2.6.30-gentoo-r8 #1 SMP Tue Nov 3 11:40:51 UTC 2009. |
| 10 |
> |
| 11 |
> Having started sshd on my laptop, when I do |
| 12 |
> |
| 13 |
> ssh -lroot 192.168.2.101 |
| 14 |
> |
| 15 |
> from my desktop, I get prompted for my ssh key's pass phrase, which I |
| 16 |
> enter. Thereafter, nothing happens, and it continues to happen for a |
| 17 |
> long, long time. |
| 18 |
|
| 19 |
Has your install gotten to the stage where you can chroot and emerge |
| 20 |
and unmerge. If so, I would suggest the following... |
| 21 |
1) unmerge pam. *DO NOT LOGOUT OR REBOOT* |
| 22 |
2) put the line |
| 23 |
sys-libs/pam |
| 24 |
in /etc/portage/package.mask Create the file if it doesn't exist. |
| 25 |
3) emerge shadow *BEFORE YOU LOG OUT OR REBOOT*. |
| 26 |
|
| 27 |
Pam is an extra-high-security option that makes sense on a public |
| 28 |
server with lots of people being able to log in. On a personal laptop |
| 29 |
it is overkill. There was a comedy album once that was called... |
| 30 |
"Everything You Know Is Wrong". That describes Pam. The security |
| 31 |
settings for various services are in totally different files and |
| 32 |
locations than normal. |
| 33 |
|
| 34 |
Are you still booting from the install CD? The way you are running |
| 35 |
sshd is not how the install manual suggests to do it. The webpage... |
| 36 |
http://www.gentoo.org/doc/en/handbook/handbook-x86.xml?part=1&chap=2 |
| 37 |
shows that you can pass the kernel options... |
| 38 |
|
| 39 |
dosshd passwd=temppassword |
| 40 |
|
| 41 |
at bootup, where "temppassword" is a temporary password. This allows |
| 42 |
you to log in by typing the temporary password. |
| 43 |
|
| 44 |
-- |
| 45 |
Walter Dnes <waltdnes@××××××××.org> |
Archives