SSH Login Shell

Matt Johnston matt at ucc.asn.au
Tue Aug 17 12:21:42 WST 2004 

On Mon, Aug 16, 2004 at 03:17:44PM -0400, Rick Woodring wrote:
> 
> I cross-compiled DropBear as a single library, installed it to my development system, generated RSA and DSS keys (to their default location/filename), and started the SSH server with the command shown below.  When I execute "ssh 10.0.1.34 -l root" on my RedHat 9 box to connect to the board, I am informed that the authenticity of my board cannot be verified as asked to continue connecting to the machine with RSA fingerprint ______________.  I tell it yes and I am prompted for the root password.  When I type it in, I see an error message "user 'root' has invalid shell, rejected" on the development machine.  Do I need to create a config file in /etc that tells dropbear what shell to run on login?

Dropbear (like most login programs) only lets you log in if there's a
valid entry for the user in /etc/passwd. The shell must either exist in
/etc/shells, or if that doesn't exist, be one of a few system default
shells (often "/bin/sh" and "/bin/csh").

Cheers,
Matt



> -rick
> 
> # dropbear -d /etc/dropbear/dropbear_dss_host_key -r /etc/dropbear/dropbear_rsa_host_key -Ejk
> [69] Jan 01 00:18:39 Running in background
> [70] Jan 01 00:18:50 Child connection from 10.0.1.34:34835
> [70] Jan 01 00:18:57 login attempt for nonexistent user
> [70] Jan 01 00:18:59 exit before auth: Exited normally
> [71] Jan 01 00:36:48 Child connection from 172.16.1.137:34849
> [71] Jan 01 00:36:50 user 'root' has invalid shell, rejected
> [71] Jan 01 00:36:52 user 'root' has invalid shell, rejected
> [71] Jan 01 00:36:53 user 'root' has invalid shell, rejected
> [71] Jan 01 00:36:54 exit before auth (user 'root', 6 fails): Exited normally
> [73] Jan 01 00:19:03 Child connection from 10.0.1.34:34836
> [74] Jan 01 00:19:06 user 'root' has invalid shell, rejected
> PRESSING <CTRL-C> ON CLIENT
> [74] Jan 01 00:19:09 exit before auth (user 'root', 2 fails): error reading: Connection reset by peer
> 
> 
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Rick Woodring
> Nova Systems Solutions (NSS)
> 
> 
> 
>

More information about the Dropbear mailing list