SFTP-Plugin deactivates root-login -> intentionally?

  • Quote

    I have no idea how you are having this problem. What ssh client?

    :) glad I'm not the only one puzzled here.

    I'm using the Gnome Terminal, only possibly unusual here is byobu (not sure if you know it, works like tmux)


    Quote

    I use complex passwords and have never had this issue. All I can think is you are using some special character that doesn't copy&paste well? Can you give an example of the password? I really don't think this is a Debian issue either. I use ssh all day long and each system has a unique, complex 16+ character password that I use copy&paste with.

    For the three machines I'm testing now it is only letters and numbers, so pretty certain that's not it.

    • Official Post

    glad I'm not the only one puzzled here.

    I'm using the Gnome Terminal, only possibly unusual here is byobu (not sure if you know it, works like tmux)

    Have you tried not using byobu? Or maybe just try xterm by itself? 25 years of using Linux and I've never seen something like this.

    For the three machines I'm testing now it is only letters and numbers, so pretty certain that's not it.

    Does /var/log/auth.log tell you the password is incorrect? It would be interesting to see a video of the setup from beginning to end because I'm not even sure how to make a system do this on purpose.

    omv 7.4.7-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • Quote

    Have you tried not using byobu? Or maybe just try xterm by itself?

    Just did. And it actually really might be byobu, after restarting, same thing again with byobu, but a pure gnome terminal the same paste just works.

    This is *really* weird, because like I said before, I only have this on debian 11/ OMV6 servers. All the not yet updated machines work just fine.

    Quote


    25 years of using Linux and I've never seen something like this.

    Dude, if I were you I would totally assume some user error as well. I'm not you - and I still am suspecting some user error, that's why quadruple and quindruplechecked everything over and over, to avoid making a fuzz about just some stupid typo.


    But like I mentioned earlier - I'm a real documentation-nazi, I love checklists and doing things step by step. I've installed so many OMVs I can't count them, and I use a checklist for it that I copy for every new install and then tick what I have done. I do nothing, not even a quick click in the WebGui, without checking it in my log. :)


    So what I wrote above here is *exactly* what I did, nothing more, nothing less. I did it all this morning, so my memory is fresh as well:

    I also still need to check it with another client PC, just to see what that does.


    Quote

    Does /var/log/auth.log tell you the password is incorrect?

    !! Good point!

    Found something


    Code
    Sep  3 11:39:16 f4p-lit sshd[1063]: error: kex_exchange_identification: Connection closed by remote host
    Sep  3 11:41:43 f4p-lit sshd[1068]: error: Protocol major versions differ: 2 vs. 1
    Sep  3 11:41:43 f4p-lit sshd[1068]: banner exchange: Connection from 1xx.xxx.xxx.xxx port 51872: could not read protocol version
    Sep  3 11:41:43 f4p-lit sshd[1069]: Unable to negotiate with 1xx.xxx.xxx.xxx port 51906: no matching host key type found. Their offer: ssh-dss [preauth]

    The not matching host key is just since I didn't set up keyauth yet, right?

    But the "protocols differ" thing - that shouldn't be should it? However if it's about different protocols for ssh on the clients - why then does that effect byobu and not non-byobu?!?


    EDIT:

    forgot to mention:

    authentication does fail, so something about the pasted password is different it seems:

    Code
    Sep  3 18:59:58 f4p-lit sshd[1069]: Failed password for root from 1xx.xxx.xxx.xxx port 46160 ssh2
    • Official Post

    The not matching host key is just since I didn't set up keyauth yet, right?

    yep


    But the "protocols differ" thing - that shouldn't be should it? However if it's about different protocols for ssh on the clients - why then does that effect byobu and not non-byobu

    If byobu is trying ssh protocol v1, that would be the problem - it is disabled in sshd configured by OMV and by sftp in the sftp plugin.

    omv 7.4.7-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • If byobu is trying ssh protocol v1, that would be the problem - it is disabled in sshd configured by OMV and by sftp in the sftp plugin.

    If we'd assume that's the problem - then why does the problem occur *only* once after restart?

    After I logged in once by typing by hand it also works again in byobu via copy&paste. (which I just verified again before I posted this)


    :) If you'd be here I'd offer a glass of scotch now. Really weird this one...

    • Official Post

    why does the problem occur *only* once after restart?

    You would have to look at the logs to see if it is always trying ssh v1 protocol. It really sounds more like a copy&paste problem than anything. Sometimes if you copy a string from one framework (gtk2 for instance) and try to paste into another (qt5 for instance), the paste will paste nothing since it thinks the copy buffer is empty. I would try pasting into byobu before typing ssh (and then erase) since you can't see how many characters are being input into ssh password prompt. Or just use ssh keys.

    omv 7.4.7-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    • Official Post

    If you'd be here I'd offer a glass of scotch now

    Not a scotch drinker (just beer) but I appreciate the offer.

    omv 7.4.7-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

  • Quote

    It really sounds more like a copy&paste problem than anything. Sometimes if you copy a string from one framework (gtk2 for instance) and try to paste into another (qt5 for instance), the paste will paste nothing since it thinks the copy buffer is empty. I would try pasting into byobu before typing ssh (and then erase) since you can't see how many characters are being input into ssh password prompt. Or just use ssh keys.

    Let me clarify what i did (numeroous times now, since I just like you could not believe it) in detail:


    1. password: EXampl3 --> is stored in Keepnote

    2. copy this via GUI (right-click copy) or strg+c (no difference)

    3. paste it to byobu terminal --> exactly how it should be, no spaces etc

    4. delete that, ssh into the machine, paste *the same thing from buffer* --> no log in

    5. type it in by hand --> log in works

    6. disconnect ssh

    7. reconnect and paste "the same thing from buffer* --> log in works


    EDIT:

    I also tried pasting it into gedit in between in case some strange formating thing might cause it

    • Official Post

    I can't think of anything that would be "set" by a local login that would "fix" ssh. Other the byobu terminal, I have logged into thousands of machines by copying from a web interface and pasting into xfce4-terminal or xterm. I also use screen quite often (don't care for tmux) but that would be after login.

    omv 7.4.7-1 sandworm | 64 bit | 6.8 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.14 | compose 7.2.3 | k8s 7.2.0-1 | cputemp 7.0.2 | mergerfs 7.0.5 | scripts 7.0.8


    omv-extras.org plugins source code and issue tracker - github - changelogs


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!