Bug 590 - sshd Access denied for valid user and password
Summary: sshd Access denied for valid user and password
Status: CLOSED WONTFIX
Alias: None
Product: Portable OpenSSH
Classification: Unclassified
Component: Build system (show other bugs)
Version: -current
Hardware: All Linux
: P2 normal
Assignee: OpenSSH Bugzilla mailing list
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2003-06-09 17:53 AEST by Gediminas Markevicius
Modified: 2004-04-14 12:24 AEST (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Gediminas Markevicius 2003-06-09 17:53:56 AEST 
System is RedHat 6.2 Linux.
Compiled from openssh-3.5p1.tar.gz sources.

Access denied while trying to login using any valid username and password.

The reason for access denial is that crypt() function in auth-passwd.c file 
returns incorrect encrypted password. crypt() returns a 13 character length 
encrypted string instead of about 30 charaters length encrypted password placed 
in /etc/shadow file.

I solved this problem by editing Makefile file. Line
"LIBS=-lutil -lz -lnsl  -lcrypto -lcrypt"
changed to 
"LIBS=-lcrypt -lutil -lz -lnsl  -lcrypto"

Recompiled once again and sshd began to work.
Comment 1 Damien Miller 2003-06-09 18:00:47 AEST 
You should use --with-md5-passwords for older Redhat.

Redhat 8.x and 9.x (maybe 7.x too) get this right without additional tricks.
Comment 2 Damien Miller 2004-04-14 12:24:19 AEST 
Mass change of RESOLVED bugs to CLOSED