sshd setup - PC-BSD Forums

simonC · #1 08-01-2007, 12:11 AM

Does anybody know how to set-up sshd?

I was looking in the forum and following the instructions. So far, mine is not working. I just want to see if it works in my local home network first.

Here is my sshd_config
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~``
Port 22
Protocol 2
ListenAddress x.x.x.x <- Here I put the IP machine

# HostKey for protocol version 1
HostKey /etc/ssh/ssh_host_key
# HostKeys for protocol version 2
#HostKey /etc/ssh/ssh_host_dsa_key

# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 1h
ServerKeyBits 768

# Logging
#obsoletes QuietMode and FascistLogging
SyslogFacility AUTH
LogLevel INFO

# Authentication:

LoginGraceTime 2m
PermitRootLogin no
StrictModes yes

#RSAAuthentication yes
PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys

# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
#RhostsRSAAuthentication no
# similar for protocol version 2
#HostbasedAuthentication no
# Change to yes if you don't trust ~/.ssh/known_hosts for
# RhostsRSAAuthentication and HostbasedAuthentication
#IgnoreUserKnownHosts no
# Don't read the user's ~/.rhosts and ~/.shosts files
#IgnoreRhosts yes

# Change to yes to enable built-in password authentication.
PasswordAuthentication yes
PermitEmptyPasswords no

# Change to no to disable PAM authentication
#ChallengeResponseAuthentication yes

# Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
#KerberosGetAFSToken no

# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes

# Set this to 'no' to disable PAM authentication (via challenge-response)
# and session processing.
#UsePAM yes

#AllowTcpForwarding yes
#GatewayPorts no
#X11Forwarding yes
#X11DisplayOffset 10
#X11UseLocalhost yes
PrintMotd yes
#PrintLastLog yes
#TCPKeepAlive yes

#UseLogin no
#UsePrivilegeSeparation yes
#PermitUserEnvironment no
#Compression yes
#ClientAliveInterval 0
#ClientAliveCountMax 3
#UseDNS yes
#PidFile /var/run/sshd.pid
#MaxStartups 10

# no default banner path
#Banner /some/path
AllowUsers rvs

# override default of no subsystems
Subsystem sftp /usr/libexec/sftp-server
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~`

In rc.conf,
sshd_enable="YES"

In inetd.conf
ssh stream tcp nowait root /usr/sbin/sshd sshd -i -4
ssh stream tcp6 nowait root /usr/sbin/sshd sshd -i -6

I don't know what else I can do.

Any ideas?

Thanks in advance

Simon C

flibbum · #2 08-01-2007, 02:12 AM

Is sshd not running at all, or can you just not connect to it? I must have set it up on my wife's mac, since I ssh into it sometimes, but I would have to dig around to see what I did.

simonC · #3 08-01-2007, 02:16 AM

Not connect at all. I know that is working because I did ps, but I can't make it accept connections.

flibbum · #4 08-01-2007, 02:21 AM

Does it give any kind of error, or does it just time out or something? Also, I noticed you have Protocol 2 as the protocol, but have a key for protocol 1 listed. I'm not sure if that's the problem, but you might want to try Protocol 2,1 and see what happens.

Solarin · #5 08-01-2007, 09:59 AM

Are you running the firewall? If so, have you opened up port 22?

simonC · #6 08-01-2007, 02:58 PM

It is giving timeout. For firewall, I change the "in" keyword by "on" in port22.

Including, I disable firewall commented out the lines in rc.conf. Now that you mention firewall, commenting out the lines in rc.conf is the right way to disable it?

putu · #7 08-02-2007, 10:51 AM

Are sure your network is fine ?

How do you connect to each other ?

Are you using switch hub ?

You better double check your connection :!:

Try to do ping commnd :wink: