I have vps that I use to run a webserver on, it currently runs ubuntu server 12.04. Since a few weeks I keep getting a lot of errors in my ssh console.
2014 Apr 11 08:41:18 vps847 PAM service(sshd) ignoring max retries; 6 > 3
2014 Apr 11 08:41:21 vps847 PAM service(sshd) ignoring max retries; 6 > 3
2014 Apr 11 08:41:24 vps847 PAM service(sshd) ignoring max retries; 6 > 3
2014 Apr 11 08:41:25 vps847 PAM service(sshd) ignoring max retries; 6 > 3
2014 Apr 11 08:41:26 vps847 PAM service(sshd) ignoring max retries; 6 > 3
2014 Apr 11 08:41:29 vps847 PAM service(sshd) ignoring max retries; 6 > 3
2014 Apr 11 08:41:29 vps847 PAM service(sshd) ignoring max retries; 6 > 3
Could someone please tell me what these errors mean. Or at least tell me how to disable these errors. It is realy anoying when I am working over ssh and these errors keep popping up all over my screen.
Best Answer
PAM
is telling you that it is configured with "retry=3" and it will ignore any further auth requests from sshd within the same session.SSH
however will continue trying until it exhausts MaxAuthTries setting (which defaults to 6).You should probably set both of these (SSH and PAM) to same value for maximum auth retries.
Updated
To change this behaviour:
For
sshd
you edit/etc/ssh/sshd_config
and setMaxAuthTries 3
. Also restart SSH server for the setting to take effect.For
PAM
, you have to look for configuration in/etc/pam.d
directory (I think it'scommon-password
file in Ubuntu), you have to changeretry=
value.Note: I would strongy suggest to also check Peter Hommel's answer regarding the reason of these requests as it's possible your SSH is being brute-forced.