Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 30 Mar 2003 19:59:51 -0600
From:      Glenn Johnson <gjohnson@srrc.ars.usda.gov>
To:        Rob B <rbyrnes@ozemail.com.au>
Cc:        current@freebsd.org
Subject:   Re: ypserv and sshd not getting along in -current
Message-ID:  <20030331015951.GA2878@gforce.johnson.home>
In-Reply-To: <5.2.0.9.2.20030331103734.0261e310@127.0.0.1>
References:  <20030328185710.GA805@node1.cluster.srrc.usda.gov> <5.2.0.9.2.20030331103734.0261e310@127.0.0.1>

next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Mar 31, 2003 at 10:46:07AM +1000, Rob B wrote:

> At 02:55 PM 29/03/03, Terry Lambert sent this up the stick:
>
> >Glenn Johnson wrote:
> >
> >> I can not login to a box with FreeBSD 5 -current via ssh because I
> >> get the following error from ypserv:
> >>
> >> Mar 28 12:48:15 node1 ypserv[317]: access to master.passwd.byuid denied 
> >-- client 192.168.1.1:49344 not privileged
> >
> >man ypbind
> >
> >(-s is the magic incantation).
>
> I have the same issue, I tried Terry's suggestion but I don't think
> its working like it should:
> 
> On the client:
> aylee # ps fax|grep yp
>    252  ??  Is     0:0.62 /usr/sbin/ypbind -s
> 
> aylee # rpcinfo -p localhost|grep yp
>         100007   2   udp  1022    ypbind
>         100007   2   tcp   1023    ypbind
> 
> Tailing the server's log:
> Mar 31 10:10:39 erwin ypserv[92]: access to master.passwd.byuid denied -- 
> client 192.168.100.30:49255 not privileged
> 
> Why would the request be coming from a high port when I have
> specifically told it to bind to a low port?

The answer (work around) is to turn off PrivelegeSeparation in your
sshd_config file.

-- 
Glenn Johnson
glennpj@charter.net



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030331015951.GA2878>