bonjour teka et merci de ta reponse désolé si la mienne à tardé j'étais absent
oups redésolé je n'avais pas vu la rubrique pb de connection -- j'aurais du clore le premier post car maintenant j'arive à la racine mais ce sera le pb 2 --une chose après l'autre
je débute complètement en ssh
j'ai réinstallé tout mo système (gutsy) plusieur pb
le premier et je te met tous mes test je me logue en interne d'une autre machine avec filezilla j'arive sans pb sur le serveur. d'une machine exterieur impossible
1)je n'ai pas firestarter d'installer.
voici tous les log ou info que je peux vous fournir et un
---------------------------------------------------------------------------------user pour tester le serveur----------------------------------------------------------------
serveur =******** loguin= test mp =********
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
netstat -tln |grep 22
tcp6 0 0 :::22 :::* LISTEN
livebox paramètre
Interface de réception : ppp0 | Interface de transmission : ppp0
1 * * * 4662 tcp permettre 1
* * * 4662
3 * * * 22 tcp permettre 4
* * * 22
nat
LAN srv 4 Redir Port 192.168.1.14 192.168.1.14 22 22 Activé
System 6 Redir Port 192.168.1.1 192.168.1.14 22 22 Activé
serveur lan
sftp Oui TCP 22 22 192.168.1.14 ppp0
diférent retour terminal
MySecureShell Verification Tool #
-e #################################################
-e ** Verifing file existance **
-e Verifing file existance of /bin/MySecureShell [ OK ]
-e Verifing file existance of /usr/bin/sftp-who [ OK ]
-e Verifing file existance of /usr/bin/sftp-kill [ OK ]
-e Verifing file existance of /usr/bin/sftp-state [ OK ]
-e Verifing file existance of /usr/bin/sftp-admin [ OK ]
-e Verifing file existance of /usr/bin/sftp-verif [ OK ]
-e Verifing file existance of /etc/ssh/sftp_config [ OK ]
-e
** Verifing rights **
-e Verifing file rights of /etc/ssh/sftp_config [ OK ]
-e Verifing file rights of /usr/bin/sftp-who [ OK ]
-e Verifing file rights of /usr/bin/sftp-verif [ OK ]
-e Verifing file rights of /usr/bin/sftp-state [ OK ]
-e Verifing file rights of /usr/bin/sftp-kill [ OK ]
-e Verifing file rights of /usr/bin/sftp-admin [ OK ]
-e Verifing file rights of /bin/MySecureShell [ OK ]
-e
** Verifing rotation logs **
MySecureShell rotation logs [ OK ]
** Verifing server status **
Verifing server status (ONLINE) [ OK ]
test en reseau
jeant@libretto:~$ lftp sftp://192.168.1.14
lftp 192.168.1.14:~>
pat@libretto:~$ ps aux | grep ssh
root 4863 0.0 0.2 5284 1000 ? Ss 15:42 0:00 /usr/sbin/sshd
pat 5400 0.0 0.1 4436 544 ? Ss 16:28 0:00 /usr/bin/ssh-agent x-session-manager
pat 7327 0.0 0.1 2992 780 pts/1 R+ 18:37 0:00 grep ssh
pat@libretto:~$ ssh -v user@localhost
OpenSSH_4.6p1 Debian-5build1, OpenSSL 0.9.8e 23 Feb 2007
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to localhost [127.0.0.1] port 22.
debug1: Connection established.
debug1: identity file /home/pat/.ssh/identity type -1
debug1: identity file /home/pat/.ssh/id_rsa type -1
debug1: identity file /home/pat/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.6p1 Debian-5build1
debug1: match: OpenSSH_4.6p1 Debian-5build1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.6p1 Debian-5build1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
The authenticity of host 'localhost (127.0.0.1)' can't be established.
RSA key fingerprint is 17:1c:57:eb:08:c6:33:e3:7b:52:ed:4e:98:86:66:b2.
Are you sure you want to continue connecting (yes/no)? y
Please type 'yes' or 'no': yes
Warning: Permanently added 'localhost' (RSA) to the list of known hosts.
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Trying private key: /home/pat/.ssh/identity
debug1: Trying private key: /home/pat/.ssh/id_rsa
debug1: Trying private key: /home/pat/.ssh/id_dsa
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
mon fichier sftp-config
<Default>
VirtualChroot true
GlobalDownload 10m
Home /ser/ftpapcs
StayAtHome false
</Default>
<User adminftp>
IsAdmin true
</User>
<Default>
VirtualChroot true
GlobalDownload 10m
Home /ser/ftpapcs
StayAtHome false
</Default>
<Group apcs>
VirtualChroot true
Upload 0
Download 1m
LimitConnectionByIP 1
LimitConnection 5
StayAtHome false
</Group>
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
fichier ssh_config
Host *
# ForwardAgent no
# ForwardX11 no
# ForwardX11Trusted yes
# RhostsRSAAuthentication no
# RSAAuthentication yes
# PasswordAuthentication yes
# HostbasedAuthentication no
# GSSAPIAuthentication no
# GSSAPIDelegateCredentials no
# GSSAPIKeyExchange no
# GSSAPITrustDNS no
# BatchMode no
# CheckHostIP yes
# AddressFamily any
# ConnectTimeout 0
# StrictHostKeyChecking ask
# IdentityFile ~/.ssh/identity
# IdentityFile ~/.ssh/id_rsa
# IdentityFile ~/.ssh/id_dsa
Port 22
# Protocol 2,1
# Cipher 3des
# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc
# EscapeChar ~
# Tunnel no
# TunnelDevice any:any
# PermitLocalCommand no
SendEnv LANG LC_*
HashKnownHosts yes
GSSAPIAuthentication yes
GSSAPIDelegateCredentials no
voila je t'ai donné tout ce que j'ai su trouver une semaine que je me bat -- je voudrais vraiment ariver à le faire marcher c'est mo premier sftp
et encore merci à toi