Opened 8 years ago
Closed 7 years ago
#1784 closed task (fixed)
can not ssh to adhoc.osgeo.osuosl.org
| Reported by: | jachym | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | |
| Component: | SysAdmin | Keywords: | ldap |
| Cc: |
Description
Hi,
my login name should be 'jachym' the password I expect to be the same as I'm using currently e.g. for trac, I'm listed at https://www.osgeo.org/cgi-bin/auth/ldap_shell.py
still, I can not log in (using ssh) to adhoc.osgeo.osuosl.org: my password does not work. Any hint?
Thank you
Jachym
Change History (16)
comment:1 by , 8 years ago
comment:2 by , 8 years ago
Ok this could be the fault of a recent change to the ldap_shell.py script. Were you given shell access recently ?
comment:3 by , 8 years ago
| Resolution: | → fixed |
|---|---|
| Status: | new → closed |
Confirmed, the script is currently unable to give users shell access. Your account was fixed to get the appropriate class now, but the script is still broken. Will file a separate issue for that.
comment:5 by , 8 years ago
| Resolution: | fixed |
|---|---|
| Status: | closed → reopened |
I can confirm: yes, recently (yesterday) by tkralidis
Thank you for your help, still no luck:
jachym@krovak:~$ ssh jachym@adhoc.osgeo.osuosl.org ssh_exchange_identification: read: Connection reset by peer
comment:6 by , 8 years ago
I'm afraid I don't know how to help with that. IIRC it also happened to me and was fixed by Wildintellect. Alex: ideas ?
comment:7 by , 8 years ago
Oh, maybe your IP is being banned for too many failed logins: sshd[23260]: refused connect from XXX.168.191.132
You should be unbanned now, can you try again ?
comment:8 by , 8 years ago
yes, that's my IP
still no luck
jachym@krovak:~$ ssh jachym@adhoc.osgeo.osuosl.org ssh_exchange_identification: read: Connection reset by peer jachym@krovak:~$ ssh jachym@demo.pywps.org ssh_exchange_identification: read: Connection reset by peer
maybe restarting some service? just asking - you know your job better than I do mine.
comment:9 by , 8 years ago
You were also cought by denyhosts, now cleaned manually. Can you test again ? (with care, don't try more than once :)
comment:10 by , 8 years ago
Actually, denyhosts re-bans your IP after I clean it. This is due to the configuration which checks the logs for failed logins attempts, and only purges entries after 1 week.
It seems too much for me, I would lower it, but maybe in your case you could be whitelisted ? Is your IP static and stable ?
comment:12 by , 8 years ago
No, it's not. Will it be whitelisted again during next week? One week from now, right?
comment:13 by , 8 years ago
One week since last failed login attempt, I think. If you are in rush I could temporarely whitelist you, coordinating on IRC
comment:14 by , 8 years ago
Or, you could try logging in from a different IP (maybe stepping by a different OSGeo machine, as you should have access to all of them now)
comment:15 by , 8 years ago
For the record, I temporarely added Jachim IP to hosts.allow and removed it after he did log in. Teoretically, he should be able to login again, from that IP, within one week (until the purge time is changed, as requested in #1787)
comment:16 by , 7 years ago
| Resolution: | → fixed |
|---|---|
| Status: | reopened → closed |
Assuming fixed. Please reopen if there's anything more to do. PS: AdHoc services should be moved elsewhere so please make sure to update the associated wiki page if needed (with contacts and state): https://wiki.osgeo.org/wiki/AdhocVM
Your LDAP record is missing
I don't know how to add/remove it, the wiki page doesn't tell.