03-27-2008
What I do know is that you can have ssh and telnet both exist on the same system, but the reason we use ssh is because we don't want to use telnet, by default telnet is not disabled automatically after installing ssh so we have to manually vi the file /etc/inet/inetd.conf and "#" it off so the in.telnetd will not work
- btw you need to be root to do any editing for inetd.conf
But If you cannot access to root due to password aging then that's a different issue.
If you really really cannot access to system as root then probably the way to get back in is to do a stop-a to force the system down into ok prompt level, do a boot cdrom -s (os media)
mount your OS disk
vi /a/etc/passwd and shadow files, add in a new entry with id '0'
umount;manually fsck all the partitions; try to boot up again.
I'm hesitant here to suggest using stop-a to force a system down If you are not administrator and unsure what I'm talking about pls consult your administrator.
This User Gave Thanks to sparcguy For This Post:
10 More Discussions You Might Find Interesting
1. AIX
Hi,
I am into production support and handling some of the AIX servers. We are planning to have a user id on a AIX system with non-expired password. Now the question is that if I have a non expired password then I cannot do a interactive login to AIX machine ( i:e cannot do Telnet ,SSH etc)... (0 Replies)
Discussion started by: siddhhuu
0 Replies
2. Solaris
We have expiration set on the root password for 30 days. the only way to login as root remotley is login as another user and then su as root. I logged in to the machine today tried to su as root, and got the message
password has expired, use passwd to change
but i cant get in as root..
If... (1 Reply)
Discussion started by: csaunders
1 Replies
3. UNIX for Advanced & Expert Users
Hi
When i try to login with my username/password i get the following message
'Password for user 'lmathew' has expired - use passwd(1) to update it'
please let me know what to do
Thanks in advane
Ammu (2 Replies)
Discussion started by: ammu
2 Replies
4. UNIX for Dummies Questions & Answers
Afternoon All
Has anyone seen this type of thing before. Basically we had an issue where an ID that has db2 connect access tried to make the db connection and got an " Attempt to establish connection failed with security reason "1"
("PASSWORD EXPIRED"). SQLSTATE=08001" error.
This I know... (0 Replies)
Discussion started by: philib
0 Replies
5. AIX
Hallo, can anybody help me with my issue? Iīd like to know if it is possible to send me a mail (to @mail.com for example) when some account password will expired? eg. few days ago of this expiration. We donīt use this account every day, it is used for DB2 and DB2 has problem every 90īs day because... (2 Replies)
Discussion started by: JiriVenera
2 Replies
6. UNIX for Dummies Questions & Answers
Hello folks,
I have few linux machines and one server from which I can connect to others without password (of course ssh key). On some server when root password will expired is asking me for change passord but on some servers no. When I can find some configuration of this behavior?
Thx for any... (1 Reply)
Discussion started by: vikus
1 Replies
7. Solaris
Never expired for root password
Guy's
I want to change the setting to keep the root password to be nerved expired!
Please advice with the sitting! (9 Replies)
Discussion started by: top.level
9 Replies
8. Shell Programming and Scripting
What happens to sftp when unix password expires / changes ? Do we need to regenerate keys again ? Please help. (3 Replies)
Discussion started by: vegasluxor
3 Replies
9. Solaris
Password got expired but not prompting for new passowrd in soalris 10 and another user got locked why it got locked and when it got locked how to check the logs (1 Reply)
Discussion started by: upender
1 Replies
10. Solaris
Hello everybody, hope you all are having a good day.
Here is our (my) situation...
We have a process where we clone Solaris 8 hard disk drives then have to configure each drive for the system they will be used in. In the old cloning image the root password never expired. We also have... (7 Replies)
Discussion started by: Wrongway
7 Replies
LEARN ABOUT PHP
ssh-keysign
ssh-keysign(1M) ssh-keysign(1M)
NAME
ssh-keysign - ssh helper program for host-based authentication
SYNOPSIS
ssh-keysign
ssh-keysign is used by ssh(1) to access the local host keys and generate the digital signature required during host-based authentication
with SSH protocol version 2. This signature is of data that includes, among other items, the name of the client host and the name of the
client user.
ssh-keysign is disabled by default and can be enabled only in the global client configuration file /etc/ssh/ssh_config by setting Host-
basedAuthentication to yes.
ssh-keysign is not intended to be invoked by the user, but from ssh. See ssh(1) and sshd(1M) for more information about host-based authen-
tication.
/etc/ssh/ssh_config
Controls whether ssh-keysign is enabled.
/etc/ssh/ssh_host_dsa_key
/etc/ssh/ssh_host_rsa_key
These files contain the private parts of the host keys used to generate the digital signature. They should be owned by root, readable
only by root, and not accessible to others. Because they are readable only by root, ssh-keysign must be set-uid root if host-based
authentication is used.
ssh-keysign will not sign host-based authentication data under the following conditions:
o If the HostbasedAuthentication client configuration parameter is not set to yes in /etc/ssh/ssh_config. This setting cannot be overri-
den in users' ~/.ssh/ssh_config files.
o If the client hostname and username in /etc/ssh/ssh_config do not match the canonical hostname of the client where ssh-keysign is
invoked and the name of the user invoking ssh-keysign.
In spite of ssh-keysign's restrictions on the contents of the host-based authentication data, there remains the ability of users to use it
as an avenue for obtaining the client's private host keys. For this reason host-based authentication is turned off by default.
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWsshu |
+-----------------------------+-----------------------------+
|Interface Stability |Evolving |
+-----------------------------+-----------------------------+
ssh(1), sshd(1M), ssh_config(4), attributes(5)
AUTHORS
Markus Friedl, markus@openbsd.org
HISTORY
ssh-keysign first appeared in Ox 3.2.
9 Jun 2004 ssh-keysign(1M)