General :: Secure Box - Authentication Failure - Long Strong Password Can Stop To Prevent From Attacks?
Mar 17, 2010
we are using linux email server axigen past few years. we keep port open ssh and pop,smtp webmail etc. ssh use for remote trouble shooting. so through firewall it is globally accessable. we notice many attacks coming to our machine, also some people try to enter in our system but failure. as example see below a log come in messages file
Mar 17 09:19:50 sa1 sshd(pam_unix)[21231]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.51.13.120 user=root how we can secure more. as per my understanding only good long strong password can stop to prevent from attacks.
View 5 Replies
ADVERTISEMENT
Oct 8, 2010
I had installed xp & ubuntu on my laptop hp compaq cq-40. Then i got this problem on su password authentication failure. I had alreadyformat and re installed ubuntu. But the su authentication still failure,
View 2 Replies
View Related
May 3, 2011
I am running Ubuntu 11.04 which I like very much (except for Unity - so I am using Ubuntu Classic).
Whenever I try to use "su - " I get Password Authentication Failure. I have checked Caps Lock (obviously) and have also tried resetting the password using "passwd" - but with no success.
If I use "sudo ...." with a command the password is accepted.
I have the same software installed on two computers but the problem only occurs on one - the other is OK!
View 2 Replies
View Related
Mar 31, 2011
I have a mail server running RHEL, with postfix, dovecot, etc. I installed Fail2ban and this works wonders against SSH brute force attacks. It'll ban an IP address for a period of time if it unsuccessfully attempts to log on 3 times within, say a minute. I was wondering if it can be as effective with pop3 attacks. If it is, how can I get it done?
View 1 Replies
View Related
Sep 24, 2010
Im using opennms network configuration backup server called 'RANCID'.It run on top of RHEL5 system and using APache. Here's the link which i'm accessing [URL] But any one can access this URL and obtain my configuration files
I want to secure this using a logon page.allow login Only for the successful authentications by entering the predefined username and password But after get authenticate book marking the above URL still can access anyone since it didnt prompt username and password again In eachtime executing the above url it should direct to authenticate page
View 5 Replies
View Related
Aug 8, 2011
I was hoping that someone could point me in the right direction. I just did an install and the os is up and running. During install, I set a root password and also set up a regular user account. The only option at login is the regular user acct. Needless to say, the os asks me to provide the root pw for just about everything I need to do.get an authentication failure. (I assume that this is the same as permission). I can find plenty of info on how to restrict access but nothing relevant to my problem. Just to rule out an install problem, I installed the os a 2nd time. I am very sure I have my passwords correct. One other thing to note is that on the 1st install, I used a different pw for root and regular user. On the 2nd, just to keep is as simple as possibl I used the same pw for root and reg user account. I am new to debian, but the distro that I have been using (slackware)
View 5 Replies
View Related
May 2, 2010
have been experiencing an error (the past few weeks) whenever I try to install a software package using the default installer. Each time I enter the root password it is not accepted and I am unable to get past it and the installation fails.This is the error message that is issued:[PK_TMP_DIR|dir:///var/tmp/TmpDir.mf2zCf] Repository already exists.I am able to enter the root password in a terminal session without any problem along with using the Install Software option in the main menu.
View 6 Replies
View Related
Jan 11, 2011
I have a strange behaviour on a Slackware 13.1 box:
Code:
user@host$ su
su: Authentication failure
[code]...
View 5 Replies
View Related
May 9, 2010
I just installed Fedora 12 on HP Pavilion (dual boot with Windows vista). I made it all the way through the installation and created my user account. A few seconds later I got the login screen asking for my password. I enter the password and get "Authentication Failure."
The name that shows up on the login screen is my full name, not the user name that I created. Is that wrong?
View 4 Replies
View Related
Feb 19, 2010
I have installed Ubuntu 8.04 inside windows and every time I go to the terminal and type "su" it asks me for a password. Well the password I set before the install doesn't work, it gives me an authentication failure. I thought that since it was inside windows it didn't set me as a root user. I go to user groups and I see my name there and then "root" above it, but its grayed out. Is there a default root password I can enter?
View 5 Replies
View Related
Apr 8, 2010
My system software is installed on an encrypted LVM on hda1 and hda2. My home directory takes up the whole of hdb1 which is also encrypted. I can boot up into the kde desktop okay, but when I open up konsole and type 'su' and my root password I get the message "su: Authentication failure". I am absolutely certain that I am using the right password.
Even more strangely, if I fire up synaptic and give it that same password I am able to install software. Does anyone have any suggestions as to what's gone wrong and how I can fix it?
I can also type Ctrl-Alt-F2 and log in as root to do administrative tasks without any problems so I cannot understand why konsole has locked me out.
View 8 Replies
View Related
Jan 25, 2011
recently my Apache server crashes very often; by watching the error log,I've notice several signs of intrusion.So, I think the problem can be a denial of service attack against my machine.My distribution is Debian Lenny.
View 2 Replies
View Related
Feb 25, 2011
how do i stop autoboot of ubuntu? and when i try do " su " in the terminal and i enter my password it says failed authentication
but i logged out and logged in again with the password and it worked? is there a default password
View 4 Replies
View Related
Jan 6, 2011
Given that my public key is a pre-shared secret is sshd made in a way that this negates the possibility of a man in the middle attack? In other words, if the known_hosts file were to be deleted, would it be safe to ignore the fingerprint of a server that already has my public key in authorized_keys?
View 5 Replies
View Related
Dec 18, 2010
I am about to sell a computer with ubuntu on it, and I created a user with no password and deleted my previous user. Now there is only one user account, and it has a blank password. However, any time I need root access (sudo, configuring user accounts, etc.) the system won't accept a blank password. It just says "authentication failure." Deleting my other account was silly. I am stuck with just one user account with a blank password!
View 3 Replies
View Related
Dec 16, 2010
I am trying to become su in the terminal window. It asks for my password, I give my usual password and I get "authentication failure". I thought that my log in password works for the su as well?
View 3 Replies
View Related
Jun 16, 2010
i have been running Ubuntu for about 3 days now, finally getting all my files moved back to the drive and what have you.I came from running windows, and an Android phone with full su access, and done up all custom-like..I am loving the speed, etc. great experience so far. BUT: the headphone port on my laptop is broken, and so I run [ran] and external soundcard, a Creative X-fi 5.1 USB SC. I have found linux drivers for this unit, and am trying to install. I have googled the crap out of how to do this, yet am getting stuck.
Here is where I'm getting stuck. I have extracted the package, entered into the sub folder, and am trying to run the Make install:
...laptop:/tmp/xfi-0.0.0.0$ cd ./xfi
...laptop:/tmp/xfi-0.0.0.0/xfi$ su -c "make install"
Password:
su: Authentication failure
...laptop:/tmp/xfi-0.0.0.0/xfi$
what in heck do i type at password... have I NOT done something, am I doing something wrong.... it does not accept my normal password, so I am lost.
View 3 Replies
View Related
Sep 3, 2009
I was messing around with changing the dictionary for our PAM cracklib module and seemed to have stuffed something up.When I attempt to log in through a telnet session with any user that has a password I getAuthentication FailureThis session is no longer connectedI am still able to log in via the Web admin using the root user/password.I can also log in from a telnet session if the user has no password.
View 6 Replies
View Related
Jun 3, 2011
I Configured LDAP Server on ubuntu Server 10.04 ,(using url ldap) and Client also it's working fine. After that I changed to ssl encryption and create certificate in server side. Now it's not authenticating from server it's shows Incorrect Password, but I can login though terminal if I am root user ,then it not ask any password it's logon to ldap user. After I changed to ldap server to ssl encryption and made one changes in client side uri ldaps://ip-address/ (/etc/ldap.conf).
View 3 Replies
View Related
Jan 20, 2010
I just got Fedora 12, and I used su root to change the bin ownership to my primary developer account. For some reason, though, all subsequent attempts to log in as root have had authentication failure, be it through su or through the startup login screen. This does NOT occur for adminstrator tools such as Groups and Users.
View 8 Replies
View Related
Jun 4, 2011
I just started learning the Linux system and I installed Ubuntu 11.04 as a partition on my IMac. I want to change my authorization in the terminal to su - , but I keep being told authentication failure.
View 4 Replies
View Related
Jun 13, 2010
I was having a problem with the keyring asking me for a password after I changed my user password. I googled it and found that since the password changed, I will get asked for the keyring password until I delete ~/.gnome2/keyrings/login.keyring. What happened was that I wasn't paying attention that you had to generate a new keyring password before rebooting.
Now, whenever I try to login via gdm, I get this message: error initiating conversation with authentication system - general failure
How do I get it working again? I can still login from the terminal.
View 4 Replies
View Related
May 31, 2010
I am changing the password of a truecrypt file container. This takes around 1 minute. Why?
time truecrypt --text --change /tmp/user1.tc --keyfiles= --new-keyfiles= --password=known --new-password=known --random-source=/dev/null"
If I use strace I see that it basically does not do anything: it simply reads lots of random data from /dev/urandom (even if i specified /dev/null as random source) and finally changes the password:
open("/dev/urandom", O_RDONLY) = 6
read(6, "36&{35121221234320234313242312I326235245224300354O)270Q200 201J227224311_212367"..., 640) = 640
close(6) = 0
View 1 Replies
View Related
Jan 10, 2010
I want to configure SSH key-based authentication and SSH password Authentication in same machine for different user .
View 1 Replies
View Related
Feb 23, 2010
I have a requirement to set up linux system administrator password with respect to below guidelines... I was lookin at pam_passwdqc but not sure that it all the below mentioned criterias to be acheieved.. Please go thru the below criteria and let me know which utility should i use for it.
1 The password length must be at least 16 characters long.
2 The password must be different from the previous 20 passwords.# Not sure how to acheieve this
3 The password must be changed every 60 days.
4 The password must be different from the user ID. It must not contain any derivatives of the User ID. ]# Not sure how to acheieve this
5 The password must contain characters from 3 of the following 4 classes:
5.1 Upper Case
5.2 Lower Case
5.3 Numerals
5.4 Special Characters (for example: #, $, &, ].....)
View 1 Replies
View Related
Feb 9, 2011
My company have an Active Directory to authenticate the user. Now we're implementing a web page in a linux webserver using PHP but one new request is to authenticate the user against AD. The problem is that we need to use SSL or another way to make secure the authentication. We don't know if using openldap and php can do this in a easy way.
View 2 Replies
View Related
Nov 18, 2010
Is it possible to set a cron to run for so long and then end it automatically?
View 4 Replies
View Related
Feb 2, 2010
Is there a way to disable password authentication completely? The command line is the following:
ssh -o KbdInteractiveAuthentication=no -o PasswordAuthentication=no machine"
it STILL asks for a password. Of course I would like to do this without touching the server, if possible.
View 2 Replies
View Related
Mar 20, 2010
I've been using dump/restore for backups, for quite some time. It's worked fine, but the process of recovering from a HD failure takes too long. What with eSATA and external drive docks, what I'd really like is to use rsync to maintain a current clone of my entire system drive. That is, start with a full disk clone, and then use rsync to keep it current.
I've seen plenty of instructions on how to do this with a directory tree, but I've seen none for doing it with a copy of the entire disk. If, for example, I copy /etc/fdisk, then the copied disk would have entries with the same UUIDs as the original disk. Which would mean that if the clone disk were to be bootable, its partitions would need the same UUIDs as the original disk. Which they would be, if the cloned disk started as a full-disk clone, I think. Am I wrong? But that means that when the clone disk was active, I'd have partitions with duplicated UUIDs. Is this going to cause problems? When I boot, will I get the correct partitions loaded?
View 4 Replies
View Related
May 17, 2010
When I tell the computer to go to sleep and there is a power failure the sleep state is lost. Is there a way to prevent this? I already know about hibernate and I'm using it but sleep is faster and there is no complete loading of the computer (BIOS, Grub and so on) it just goes directly into the desktop. As far as I know the sleep state is done when everything is in RAM and the computer is turned off but the RAM sticks still receive power. Is this true?
P.S. Can this be done with hibernate and SSD drives? As far as I can tell from what I've read it will be the same but with no state loss. Is this true?
View 2 Replies
View Related
