<div dir="ltr">I have it running as a separate daemon on a few systems as a non root user without problems..<div>I changed the config.h to disable all the features which might require more rights than the user has or uses OS functions.... for instance DISABLE_PAM, DISABLE_LASTLOG, DISABLE_SYSLOG</div><div>I only use the user daemon with ssh keys...</div><div><br></div><div>Also I changed the locations of all the needed files to a local locaition</div><div>for instance in the options.h file where the hostkeys are located (removed the /etc path from it)</div><div><br></div><div>That should make it work I believe</div><div><div><br></div></div><div><br></div><div>Hans</div><div><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Jun 10, 2016 at 10:43 AM, Nixon, Kent W <span dir="ltr"><<a href="mailto:kwn2@pitt.edu" target="_blank">kwn2@pitt.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi all,<br>
<br>
I'm currently testing my (default) compile settings of dropbear 2016.73 on an x86_64 Ubuntu 14.04 machine. I'm running the dropbear server from the terminal of a standard user account and attempting to connect using dbclient as that same user from the same machine just to test/learn how to use dropbear before I attempt to cross-compile it and run it on an Android system.<br>
<br>
I currently run the following command to start the server:<br>
<br>
dropbear -F -p 6666 -E -R -m<br>
<br>
And attempt to connect (using the same machine) as the same user that is running dropbear using:<br>
<br>
dbcleint -p 6666 -y <username>@<a href="http://127.0.0.1" rel="noreferrer" target="_blank">127.0.0.1</a><br>
<br>
Everything seems to work well, except that after I enter the appropriate password, the client is rejected by the server which posts the message:<br>
<br>
User account '<username>' is locked<br>
<br>
However, following the same steps as above, but running the dropbear server with root permissions, everything works as expected (i.e. I am able to open a remote shell without any problems).<br>
<br>
What changes when dropbear is run with standard user permissions that is causing the account to be 'locked'? Do I need to locate the rsa/dss/ecdsa keys somewhere else other than /etc/dropbear/?<br>
<br>
Thanks in advance for your time and consideration!<br>
<span class="HOEnZb"><font color="#888888"><br>
~ Kent<br>
</font></span></blockquote></div><br></div></div>