Unable to connect via ssh

Hello!

It's been about a week or so from the last time I worked with my OMV server. I am the only person working with it, and it is not connected to the internet, so there could be no changes in the configuration.

Suddenly, after a week on inactivity, I am trying to connect to my server via ssh, but i cant!

MOBA tells me "Network error: connection refused"

Tried to reboot the server - same reaction

Tried to reboot the ssh service through web interface, and while saving configuration, I suddenly face this error (pic. 1, under black lines is names of users, coverd for privacy reasons)

I guess, there is some problems with some ssh keys, but I cant even turn off "Open key authorization" option in web Services/ssh settings, same error appears when Trying to save it

Will be very grateful fo any advice!!!

Failed to execute command 'export PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin; export LANG=C.UTF-8; export LANGUAGE=; omv-salt deploy run --no-color ssh 2>&1' with exit code '1': debian:

----------

ID: disable_ssh_socket_activation

Function: service.dead

Name: ssh.socket

Result: True

Comment: The service ssh.socket is already dead

Started: 09:57:24.317707

Duration: 90.576 ms

Changes:

----------

ID: remove_ssh_authorized_keys

Function: file.directory

Name: /var/lib/openmediavault/ssh/authorized_keys

Result: True

Comment: Files cleaned from directory /var/lib/openmediavault/ssh/authorized_keys

Started: 09:57:24.411427

Duration: 26.741 ms

Changes:

----------

/var/lib/openmediavault/ssh/authorized_keys/Administrator:

----------

removed:

Removed due to clean

/var/lib/openmediavault/ssh/authorized_keys/user1:

----------

removed:

Removed due to clean

/var/lib/openmediavault/ssh/authorized_keys/user2:

----------

removed:

Removed due to clean

removed:

- /var/lib/openmediavault/ssh/authorized_keys/user1

- /var/lib/openmediavault/ssh/authorized_keys/user2

----------

ID: create_ssh_authorized_key_file_Administrator

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/Administrator

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/Administrator updated

Started: 09:57:24.438391

Duration: 3.921 ms

Changes:

----------

diff:

New file

user:

Administrator

----------

ID: create_ssh_authorized_key_file_user1

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/user1

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/user1 updated

Started: 09:57:24.442547

Duration: 3.521 ms

Changes:

----------

diff:

New file

user:

user1

----------

ID: create_ssh_authorized_key_file_user2

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/user2

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/user2 updated

Started: 09:57:24.446233

Duration: 3.451 ms

Changes:

----------

diff:

New file

user:

user2

----------

ID: configure_sshd_config

Function: file.managed

Name: /etc/ssh/sshd_config

Result: True

Comment: File /etc/ssh/sshd_config is in the correct state

Started: 09:57:24.843840

Duration: 294.646 ms

Changes:

----------

ID: divert_sshd_config

Function: omv_dpkg.divert_add

Name: /etc/ssh/sshd_config

Result: True

Comment: Leaving 'local diversion of /etc/ssh/sshd_config to /etc/ssh/sshd_config.distrib'

Started: 09:57:25.139239

Duration: 16.418 ms

Changes:

----------

ID: create_sshd_runtime_dir

Function: file.directory

Name: /run/sshd

Result: True

Comment:

Started: 09:57:25.155924

Duration: 1.981 ms

Changes:

----------

/run/sshd:

----------

directory:

new

----------

ID: test_sshd_config

Function: cmd.run

Name: sshd -t

Result: False

Comment: Command "sshd -t" run

Started: 09:57:25.159087

Duration: 95.483 ms

Changes:

----------

pid:

1157

retcode:

1

stderr:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_rsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_rsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_rsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ecdsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ecdsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ecdsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ed25519_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ed25519_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ed25519_key

sshd: no hostkeys available -- exiting.

stdout:

----------

ID: stop_ssh_service

Function: service.dead

Name: ssh

Result: True

Comment: The service ssh is already dead

Started: 09:57:25.254867

Duration: 61.537 ms

Changes:

Summary for debian

--------------

Succeeded: 109 (changed=106)

Failed: 1

--------------

Total states run: 110

Total run time: 975.375 ms

[ERROR ] Command 'sshd' failed with return code: 1

[ERROR ] stderr: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_rsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_rsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_rsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ecdsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ecdsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ecdsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ed25519_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ed25519_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ed25519_key

sshd: no hostkeys available -- exiting.

[ERROR ] retcode: 1

[ERROR ] {'pid': 1157, 'retcode': 1, 'stdout': '', 'stderr': '@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: UNPROTECTED PRIVATE KEY FILE! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0777 for \'/etc/ssh/ssh_host_rsa_key\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nUnable to load host key "/etc/ssh/ssh_host_rsa_key": bad permissions\r\nUnable to load host key: /etc/ssh/ssh_host_rsa_key\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: UNPROTECTED PRIVATE KEY FILE! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0777 for \'/etc/ssh/ssh_host_ecdsa_key\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nUnable to load host key "/etc/ssh/ssh_host_ecdsa_key": bad permissions\r\nUnable to load host key: /etc/ssh/ssh_host_ecdsa_key\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: UNPROTECTED PRIVATE KEY FILE! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0777 for \'/etc/ssh/ssh_host_ed25519_key\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nUnable to load host key "/etc/ssh/ssh_host_ed25519_key": bad permissions\r\nUnable to load host key: /etc/ssh/ssh_host_ed25519_key\r\nsshd: no hostkeys available -- exiting.'}

OMV\ExecException: Failed to execute command 'export PATH=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin; export LANG=C.UTF-8; export LANGUAGE=; omv-salt deploy run --no-color ssh 2>&1' with exit code '1': debian:

----------

ID: disable_ssh_socket_activation

Function: service.dead

Name: ssh.socket

Result: True

Comment: The service ssh.socket is already dead

Started: 09:57:24.317707

Duration: 90.576 ms

Changes:

----------

ID: remove_ssh_authorized_keys

Function: file.directory

Name: /var/lib/openmediavault/ssh/authorized_keys

Result: True

Comment: Files cleaned from directory /var/lib/openmediavault/ssh/authorized_keys

Started: 09:57:24.411427

Duration: 26.741 ms

Changes:

----------

/var/lib/openmediavault/ssh/authorized_keys/Administrator:

----------

removed:

Removed due to clean

/var/lib/openmediavault/ssh/authorized_keys/ahmetsafinaar:

----------

removed:

Removed due to clean

/var/lib/openmediavault/ssh/authorized_keys/ambarianma:

----------

removed:

- /var/lib/openmediavault/ssh/authorized_keys/bagaevatu

- /var/lib/openmediavault/ssh/authorized_keys/grakov

----------

ID: create_ssh_authorized_key_file_Administrator

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/Administrator

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/Administrator updated

Started: 09:57:24.438391

Duration: 3.921 ms

Changes:

----------

diff:

New file

user:

Administrator

----------

ID: create_ssh_authorized_key_file_user1

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/user1

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/user1 updated

Started: 09:57:24.442547

Duration: 3.521 ms

Changes:

----------

diff:

New file

user:

user1

----------

ID: create_ssh_authorized_key_file_user2

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/user2

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/user2 updated

Started: 09:57:24.446233

Duration: 3.451 ms

Changes:

----------

diff:

New file

user:

user2

----------

ID: create_ssh_authorized_key_file_devushkina

Function: file.managed

Name: /var/lib/openmediavault/ssh/authorized_keys/devushkina

Result: True

Comment: File /var/lib/openmediavault/ssh/authorized_keys/devushkina updated

Started: 09:57:24.840129

Duration: 3.556 ms

Changes:

----------

diff:

New file

user:

devushkina

----------

ID: configure_sshd_config

Function: file.managed

Name: /etc/ssh/sshd_config

Result: True

Comment: File /etc/ssh/sshd_config is in the correct state

Started: 09:57:24.843840

Duration: 294.646 ms

Changes:

----------

ID: divert_sshd_config

Function: omv_dpkg.divert_add

Name: /etc/ssh/sshd_config

Result: True

Comment: Leaving 'local diversion of /etc/ssh/sshd_config to /etc/ssh/sshd_config.distrib'

Started: 09:57:25.139239

Duration: 16.418 ms

Changes:

----------

ID: create_sshd_runtime_dir

Function: file.directory

Name: /run/sshd

Result: True

Comment:

Started: 09:57:25.155924

Duration: 1.981 ms

Changes:

----------

/run/sshd:

----------

directory:

new

----------

ID: test_sshd_config

Function: cmd.run

Name: sshd -t

Result: False

Comment: Command "sshd -t" run

Started: 09:57:25.159087

Duration: 95.483 ms

Changes:

----------

pid:

1157

retcode:

1

stderr:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_rsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_rsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_rsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ecdsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ecdsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ecdsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ed25519_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ed25519_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ed25519_key

sshd: no hostkeys available -- exiting.

stdout:

----------

ID: stop_ssh_service

Function: service.dead

Name: ssh

Result: True

Comment: The service ssh is already dead

Started: 09:57:25.254867

Duration: 61.537 ms

Changes:

Summary for debian

--------------

Succeeded: 109 (changed=106)

Failed: 1

--------------

Total states run: 110

Total run time: 975.375 ms

[ERROR ] Command 'sshd' failed with return code: 1

[ERROR ] stderr: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_rsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_rsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_rsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ecdsa_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ecdsa_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ecdsa_key

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

@ WARNING: UNPROTECTED PRIVATE KEY FILE! @

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

Permissions 0777 for '/etc/ssh/ssh_host_ed25519_key' are too open.

It is required that your private key files are NOT accessible by others.

This private key will be ignored.

Unable to load host key "/etc/ssh/ssh_host_ed25519_key": bad permissions

Unable to load host key: /etc/ssh/ssh_host_ed25519_key

sshd: no hostkeys available -- exiting.

[ERROR ] retcode: 1

[ERROR ] {'pid': 1157, 'retcode': 1, 'stdout': '', 'stderr': '@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: UNPROTECTED PRIVATE KEY FILE! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0777 for \'/etc/ssh/ssh_host_rsa_key\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nUnable to load host key "/etc/ssh/ssh_host_rsa_key": bad permissions\r\nUnable to load host key: /etc/ssh/ssh_host_rsa_key\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: UNPROTECTED PRIVATE KEY FILE! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0777 for \'/etc/ssh/ssh_host_ecdsa_key\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nUnable to load host key "/etc/ssh/ssh_host_ecdsa_key": bad permissions\r\nUnable to load host key: /etc/ssh/ssh_host_ecdsa_key\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: UNPROTECTED PRIVATE KEY FILE! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0777 for \'/etc/ssh/ssh_host_ed25519_key\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nUnable to load host key "/etc/ssh/ssh_host_ed25519_key": bad permissions\r\nUnable to load host key: /etc/ssh/ssh_host_ed25519_key\r\nsshd: no hostkeys available -- exiting.'} in /usr/share/php/openmediavault/system/process.inc:247

Stack trace:

#0 /usr/share/php/openmediavault/engine/module/serviceabstract.inc(62): OMV\System\Process->execute()

#1 /usr/share/openmediavault/engined/rpc/config.inc(178): OMV\Engine\Module\ServiceAbstract->deploy()

#2 [internal function]: Engined\Rpc\Config->applyChanges()

#3 /usr/share/php/openmediavault/rpc/serviceabstract.inc(122): call_user_func_array()

#4 /usr/share/php/openmediavault/rpc/serviceabstract.inc(149): OMV\Rpc\ServiceAbstract->callMethod()

#5 /usr/share/php/openmediavault/rpc/serviceabstract.inc(622): OMV\Rpc\ServiceAbstract->OMV\Rpc\{closure}()

#6 /usr/share/php/openmediavault/rpc/serviceabstract.inc(146): OMV\Rpc\ServiceAbstract->execBgProc()

#7 /usr/share/openmediavault/engined/rpc/config.inc(199): OMV\Rpc\ServiceAbstract->callMethodBg()

#8 [internal function]: Engined\Rpc\Config->applyChangesBg()

#9 /usr/share/php/openmediavault/rpc/serviceabstract.inc(122): call_user_func_array()

#10 /usr/share/php/openmediavault/rpc/rpc.inc(86): OMV\Rpc\ServiceAbstract->callMethod()

#11 /usr/sbin/omv-engined(535): OMV\Rpc\Rpc::call()

#12 {main}

Looks like there is some problem whith permissions
Question is - how to fix it without access to console?

What is this exactly?

Ah, got it
Yeah, never thougth about than

Problem resolved!!!

phisycly connected to the server, set chmod for etc/ssh to 700, now everything working!

It remains to be seen, how on earth permissions was set to 777...