質問編集履歴

内容修正

2020/10/14 00:05

投稿

syosinnsya_

スコア5

test CHANGED Viewed

File without changes

test CHANGED Viewed

@@ -417,139 +417,3 @@
 #       ForceCommand cvs server
 ```
-###cat /etc/nsswitch.conf(10月14日　追記)
-```
-[root@localhost ~]# cat /etc/nsswitch.conf
-#
-# /etc/nsswitch.conf
-#
-# An example Name Service Switch config file. This file should be
-# sorted with the most-used services at the beginning.
-#
-# The entry '[NOTFOUND=return]' means that the search for an
-# entry should stop if the search in the previous entry turned
-# up nothing. Note that if the search failed due to some other reason
-# (like no NIS server responding) then the search continues with the
-# next entry.
-#
-# Valid entries include:
-#
-#       nisplus                 Use NIS+ (NIS version 3)
-#       nis                     Use NIS (NIS version 2), also called YP
-#       dns                     Use DNS (Domain Name Service)
-#       files                   Use the local files
-#       db                      Use the local database (.db) files
-#       compat                  Use NIS on compat mode
-#       hesiod                  Use Hesiod for user lookups
-#       [NOTFOUND=return]       Stop searching if not found so far
-#
-# To use db, put the "db" in front of "files" for entries you want to be
-# looked up first in the databases
-#
-# Example:
-#passwd:    db files nisplus nis
-#shadow:    db files nisplus nis
-#group:     db files nisplus nis
-passwd:     files sss
-shadow:     files sss
-group:      files sss
-#initgroups: files
-#hosts:     db files nisplus nis dns
-hosts:      files dns
-# Example - obey only what nisplus tells us...
-#services:   nisplus [NOTFOUND=return] files
-#networks:   nisplus [NOTFOUND=return] files
-#protocols:  nisplus [NOTFOUND=return] files
-#rpc:        nisplus [NOTFOUND=return] files
-#ethers:     nisplus [NOTFOUND=return] files
-#netmasks:   nisplus [NOTFOUND=return] files
-bootparams: nisplus [NOTFOUND=return] files
-ethers:     files
-netmasks:   files
-networks:   files
-protocols:  files
-rpc:        files
-services:   files sss
-netgroup:   files sss
-publickey:  nisplus
-automount:  files sss
-aliases:    files nisplus
-```

情報追加

2020/10/14 00:05

投稿

syosinnsya_

スコア5

test CHANGED Viewed

File without changes

test CHANGED Viewed

@@ -417,3 +417,139 @@
 #       ForceCommand cvs server
 ```
+###cat /etc/nsswitch.conf(10月14日　追記)
+```
+[root@localhost ~]# cat /etc/nsswitch.conf
+#
+# /etc/nsswitch.conf
+#
+# An example Name Service Switch config file. This file should be
+# sorted with the most-used services at the beginning.
+#
+# The entry '[NOTFOUND=return]' means that the search for an
+# entry should stop if the search in the previous entry turned
+# up nothing. Note that if the search failed due to some other reason
+# (like no NIS server responding) then the search continues with the
+# next entry.
+#
+# Valid entries include:
+#
+#       nisplus                 Use NIS+ (NIS version 3)
+#       nis                     Use NIS (NIS version 2), also called YP
+#       dns                     Use DNS (Domain Name Service)
+#       files                   Use the local files
+#       db                      Use the local database (.db) files
+#       compat                  Use NIS on compat mode
+#       hesiod                  Use Hesiod for user lookups
+#       [NOTFOUND=return]       Stop searching if not found so far
+#
+# To use db, put the "db" in front of "files" for entries you want to be
+# looked up first in the databases
+#
+# Example:
+#passwd:    db files nisplus nis
+#shadow:    db files nisplus nis
+#group:     db files nisplus nis
+passwd:     files sss
+shadow:     files sss
+group:      files sss
+#initgroups: files
+#hosts:     db files nisplus nis dns
+hosts:      files dns
+# Example - obey only what nisplus tells us...
+#services:   nisplus [NOTFOUND=return] files
+#networks:   nisplus [NOTFOUND=return] files
+#protocols:  nisplus [NOTFOUND=return] files
+#rpc:        nisplus [NOTFOUND=return] files
+#ethers:     nisplus [NOTFOUND=return] files
+#netmasks:   nisplus [NOTFOUND=return] files
+bootparams: nisplus [NOTFOUND=return] files
+ethers:     files
+netmasks:   files
+networks:   files
+protocols:  files
+rpc:        files
+services:   files sss
+netgroup:   files sss
+publickey:  nisplus
+automount:  files sss
+aliases:    files nisplus
+```

情報追加

2020/10/13 23:56

投稿

syosinnsya_

スコア5

test CHANGED Viewed

File without changes

test CHANGED Viewed

@@ -56,6 +56,54 @@
+###/bin/systemctl status sshd.service
+IPアドレスを一部隠しています。
+```
+[root@localhost ~]# /bin/systemctl status sshd.service
+● sshd.service - OpenSSH server daemon
+   Loaded: loaded (/usr/lib/systemd/system/sshd.service; enabled; vendor preset: enabled)
+   Active: active (running) since 木 2020-09-03 13:43:24 JST; 1 months 9 days ago
+     Docs: man:sshd(8)
+           man:sshd_config(5)
+ Main PID: 1427 (sshd)
+   CGroup: /system.slice/sshd.service
+           └─1427 /usr/sbin/sshd -D
+10月 13 09:08:21 localhost.localdomain sshd[4877]: Accepted password for root from 192.168.xx.xx port 55275 ssh2
+10月 13 09:09:49 localhost.localdomain sshd[4929]: Accepted password for root from 192.168.xx.xx port 55281 ssh2
+10月 13 09:10:02 localhost.localdomain sshd[4959]: Accepted password for root from 192.168.xx.xx port 55282 ssh2
+10月 13 09:14:00 localhost.localdomain sshd[5051]: Accepted password for root from 192.168.xx.xx port 55290 ssh2
+10月 13 09:20:17 localhost.localdomain sshd[5189]: Accepted password for root from 192.168.xx.xx port 55301 ssh2
+10月 13 13:55:58 localhost.localdomain sshd[10262]: Accepted password for root from 192.168.xx.xx port 56939 ssh2
+10月 13 15:04:18 localhost.localdomain sshd[11562]: Accepted password for root from 192.168.xx.xx port 57131 ssh2
+10月 13 15:10:10 localhost.localdomain sshd[11693]: Accepted password for root from 192.168.xx.xx port 57148 ssh2
+10月 13 15:55:36 localhost.localdomain sshd[12538]: Accepted password for root from 192.168.xx.xx port 57574 ssh2
+10月 13 16:03:59 localhost.localdomain sshd[12727]: Accepted password for root from 192.168.xx.xx port 57772 ssh2
+```
 ###sshd_config
 ```

情報追加

2020/10/13 07:18

投稿

syosinnsya_

スコア5

test CHANGED Viewed

File without changes

test CHANGED Viewed

@@ -53,3 +53,319 @@
 もし解る方がいらっしゃいましたら教えていただけますと幸いです。
 よろしくお願い致します。
+###sshd_config
+```
+[root@localhost ~]# cat /etc/ssh/sshd_config
+#       $OpenBSD: sshd_config,v 1.93 2014/01/10 05:59:19 djm Exp $
+# This is the sshd server system-wide configuration file.  See
+# sshd_config(5) for more information.
+# This sshd was compiled with PATH=/usr/local/bin:/usr/bin
+# The strategy used for options in the default sshd_config shipped with
+# OpenSSH is to specify options with their default value where
+# possible, but leave them commented.  Uncommented options override the
+# default value.
+# If you want to change the port on a SELinux system, you have to tell
+# SELinux about this change.
+# semanage port -a -t ssh_port_t -p tcp #PORTNUMBER
+#
+#Port 22
+#AddressFamily any
+#ListenAddress 0.0.0.0
+#ListenAddress ::
+# The default requires explicit activation of protocol 1
+#Protocol 2
+# HostKey for protocol version 1
+#HostKey /etc/ssh/ssh_host_key
+# HostKeys for protocol version 2
+HostKey /etc/ssh/ssh_host_rsa_key
+#HostKey /etc/ssh/ssh_host_dsa_key
+HostKey /etc/ssh/ssh_host_ecdsa_key
+HostKey /etc/ssh/ssh_host_ed25519_key
+# Lifetime and size of ephemeral version 1 server key
+#KeyRegenerationInterval 1h
+#ServerKeyBits 1024
+# Ciphers and keying
+#RekeyLimit default none
+# Logging
+# obsoletes QuietMode and FascistLogging
+#SyslogFacility AUTH
+SyslogFacility AUTHPRIV
+#LogLevel INFO
+# Authentication:
+#LoginGraceTime 2m
+#PermitRootLogin yes
+#StrictModes yes
+#MaxAuthTries 6
+#MaxSessions 10
+#RSAAuthentication yes
+#PubkeyAuthentication yes
+# The default is to check both .ssh/authorized_keys and .ssh/authorized_keys2
+# but this is overridden so installations will only check .ssh/authorized_keys
+#AuthorizedKeysFile     .ssh/authorized_keys
+#AuthorizedPrincipalsFile none
+#AuthorizedKeysCommand none
+#AuthorizedKeysCommandUser nobody
+# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
+#RhostsRSAAuthentication no
+# similar for protocol version 2
+#HostbasedAuthentication no
+# Change to yes if you don't trust ~/.ssh/known_hosts for
+# RhostsRSAAuthentication and HostbasedAuthentication
+#IgnoreUserKnownHosts no
+# Don't read the user's ~/.rhosts and ~/.shosts files
+#IgnoreRhosts yes
+# To disable tunneled clear text passwords, change to no here!
+#PasswordAuthentication yes
+#PermitEmptyPasswords no
+PasswordAuthentication yes
+# Change to no to disable s/key passwords
+#ChallengeResponseAuthentication yes
+ChallengeResponseAuthentication no
+# Kerberos options
+#KerberosAuthentication no
+#KerberosOrLocalPasswd yes
+#KerberosTicketCleanup yes
+#KerberosGetAFSToken no
+#KerberosUseKuserok yes
+# GSSAPI options
+GSSAPIAuthentication yes
+GSSAPICleanupCredentials no
+#GSSAPIStrictAcceptorCheck yes
+#GSSAPIKeyExchange no
+#GSSAPIEnablek5users no
+# Set this to 'yes' to enable PAM authentication, account processing,
+# and session processing. If this is enabled, PAM authentication will
+# be allowed through the ChallengeResponseAuthentication and
+# PasswordAuthentication.  Depending on your PAM configuration,
+# PAM authentication via ChallengeResponseAuthentication may bypass
+# the setting of "PermitRootLogin without-password".
+# If you just want the PAM account and session checks to run without
+# PAM authentication, then enable this but set PasswordAuthentication
+# and ChallengeResponseAuthentication to 'no'.
+# WARNING: 'UsePAM no' is not supported in Red Hat Enterprise Linux and may cause several
+# problems.
+UsePAM yes
+#AllowAgentForwarding yes
+#AllowTcpForwarding yes
+#GatewayPorts no
+X11Forwarding yes
+#X11DisplayOffset 10
+#X11UseLocalhost yes
+#PermitTTY yes
+#PrintMotd yes
+#PrintLastLog yes
+#TCPKeepAlive yes
+#UseLogin no
+UsePrivilegeSeparation sandbox          # Default for new installations.
+#PermitUserEnvironment no
+#Compression delayed
+#ClientAliveInterval 0
+#ClientAliveCountMax 3
+#ShowPatchLevel no
+#UseDNS yes
+#PidFile /var/run/sshd.pid
+#MaxStartups 10:30:100
+#PermitTunnel no
+#ChrootDirectory none
+#VersionAddendum none
+# no default banner path
+#Banner none
+# Accept locale-related environment variables
+AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
+AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
+AcceptEnv LC_IDENTIFICATION LC_ALL LANGUAGE
+AcceptEnv XMODIFIERS
+# override default of no subsystems
+Subsystem       sftp    /usr/libexec/openssh/sftp-server
+# Example of overriding settings on a per-user basis
+#Match User anoncvs
+#       X11Forwarding no
+#       AllowTcpForwarding no
+#       PermitTTY no
+#       ForceCommand cvs server
+```

情報追加

2020/10/13 07:07

投稿

syosinnsya_

スコア5

test CHANGED Viewed

File without changes

test CHANGED Viewed

@@ -14,19 +14,27 @@
-先日、FTPサーバーを構築する過程でSELinuxを無効化してrebootしました。
+先日、FTPサーバーを構築する過程でSELinuxを無効化してOS（CentOS）を
-その際にSSHクライアントソフトの画面が急に真っ暗になり、再度接続を
+rebootしました。
+その際にSSHクライアントソフトの画面が急に真っ暗になり、RLoginを立ち上げ直して
-試みても出来ませんでした。
+再度接続を試みてもエラーが発生して出来ませんでした。（エラーの内容はメモして
+いなかったため分かりません。すみません。。。今後は必ず記録するようにします。）
-デスクトップPC、キーボード、マウスを持ってきてサーバーに繋げて
+接続出来なかったのはSSHだけでした。
-デスクトップPCから操作すると、再度SSHクライアントソフトから
+ディスプレイ（モニター）、キーボード、マウスを持ってきて、ディスプレイを
+ディスプレイケーブルでサーバー（デスクトップPC本体）に繋げて画面から再起動の
-接続可能になりました。
+操作をすると、再度SSHクライアントソフトから接続可能になりました。