Am urmatoarea problema. Am instalat pureftpd si l-am configurat cu virtulal users folosind PureDB.
Am creat citeva conturi de useri virtuali si conectarea acestora merge perfect. In final am configurat si un cont care doresc sa foloseasca criptare pentru conectare. Acet user se chiama: test si i-am dat parola: sec Am configurat serverul de ftp sa accepte conectare fara criptare de la anumite adrese de ip. Am verificat daca se conecteaza si toul e ok. Acum incep durerile de cap........la criptarea, trimiterea si decodarea parolei. Am instalat pe o statie Win98 ( cu IPUL 192.168.0.4) secureFX. Folosind secureFX am generat cele 2 key: Identity si Identity.pub L-am configurat sa foloseasca la conectare: - protocolul FTPoverSSH2 - userul: test - parola: sec - ftpserver 192.168.0.1 - ftpserver port 21 In sectiunea ssh2 logon: am configurat sa foloseasca la conectare: - use FTP connection settings - port 22 - authentication primary: password - authentication secondary: use public key ( este data calea catre fisierul Identity, generat anterior ) De asemenea , pe 192.168.0.1 am instalat openssh-3..0.2p1-1. Am copiat apoi fisierul Identity.pub de pe windows pe masina Linux , in directorul /root/.ssh Initial in /root/.ssh exista numai fisierul known_hosts Am facut conversia: cd /root/.ssh ssh-keygen -i -f ~/.ssh/Identity.pub >> identity In acest moment daca incerc sa ma conectez de pe windows, prima data imi cere sa accept un HOST KEY de la 192.168.0.1. Eu zic da, ACCEPT si apoi incearca sa ma conecteze la serverul de ftp. In acest moment imi da reject la parola transmisa. Iata ce mesaj vad in fereastra lui secureFX: i SecureFX(2.0) : Using SSH2Core v2.1.0.2 i State Change: SSH_STATE_UNINITIALIZED->SSH_STATE_CONNECTING i State Change: SSH_STATE_CONNECTING->SSH_STATE_EXPECT_IDENTIFIER i connected i RECV : Remote Identifier = "SSH-1.99-OpenSSH_3.0.2p1" i CAP : Remote can re-key i CAP : Remote sends language in password change requests i CAP : Remote sends algorithm name in PK_OK packets i CAP : Remote sends algorithm name in public key packets i CAP : Remote sends algorithm name in signatures i CAP : Remote sends error text in open failure packets i CAP : Remote sends name in service accept packets i CAP : Remote includes port number in x11 open packets i CAP : Remote uses 160 bit keys for SHA1 MAC i CAP : Remote supports new diffie-hellman group exchange messages i CAP : Remote is IETF-DRAFT compliant i SEND : KEXINIT i State Change: SSH_STATE_EXPECT_IDENTIFIER->SSH_STATE_INITIAL_KEYEXCHANGE i RECV : Read kexinit i Kex Method = diffie-hellman-group-exchange-sha1 i Host Key Algo = ssh-dss i Send Cipher = aes128-cbc i Recv Cipher = aes128-cbc i Send Mac = hmac-md5 i Recv Mac = hmac-md5 i Compressor = none i Decompressor = none i SEND : KEXDH_GEX_REQUEST i RECV : DH Prime is 1535 bits i RECV : KEXDH_GEX_GROUP i SEND : KEXDH_INIT i RECV : KEXDH_REPLY i SEND : NEWKEYS i State Change: SSH_STATE_INITIAL_KEYEXCHANGE->SSH_STATE_INITIAL_EXPECT_NEWKEYS i RECV : NEWKEYS i State Change: SSH_STATE_INITIAL_EXPECT_NEWKEYS->SSH_STATE_USERAUTH i SEND : SERVICE_REQUEST [userauth] i RECV : SERVICE_ACCEPT i SENT : USERAUTH_REQUEST [none] i RECV : USERAUTH_FAILURE, continuations [publickey,password,keyboard-interactive] i SENT : USERAUTH_REQUEST [password] i RECV : USERAUTH_FAILURE, continuations [publickey,password,keyboard-interactive] i SEND: Disconnect packet: The user canceled authentication. i State Change: SSH_STATE_USERAUTH->SSH_STATE_CLOSING i State Change: SSH_STATE_CLOSING->SSH_STATE_CLOSED i Connected for 27 seconds, 966 bytes sent, 1809 bytes received i Control connection could not be established (-536870885). Are cinea idee unde gresesc? Alex --- Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to unsubscribe from this list.
