Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: SSH woes
Operating Systems Solaris SSH woes Post 302270071 by Perderabo on Friday 19th of December 2008 01:57:01 PM
Old 12-19-2008
Not what I had in mind. I believe that setting it to "ask" results in the behavior you described as "are you sure you want to continue connecting (yes/no)?"

I believe that setting it to "yes" results in the behavior you describe as "The non-local machine, does not get the same message. His message goes something like: RSA key could not be validated or matched, connection closed by remote host."

To fix the problem set it to "ask" everywhere.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

CDROM Woes

Have a Sun CDROM connected to a Ultra machine . Problem is it is not recognizing the drive being connected to it ... When i put the CD in the drive it accepts the CD and zooms initially then quitens out .. The devices drivers are also not created for it ... Any ideas anyone ... I am... (4 Replies)
Discussion started by: Jai
4 Replies

2. IP Networking

source address woes

I have checkpoint firewall-1 running on a solaris 7 sparc box with two physical working networks interface cards hme0, qfe0, (please note these are false addresses) qfe0 = 195.111.222.178 internet ISP hme0 = 172.19.12.58 /24 internal Lan which has a router to france on it I want to... (3 Replies)
Discussion started by: hcclnoodles
3 Replies

3. Solaris

Solaris 8 ssh -X woes

howdy, I have a couple of headless Solaris 8 servers i can access via ssh for basic periodic patching. I would like to use the X server to access some of the apps that reside there also, but when i start X it errors out, complaining it can't find /dev/fb. Is there a way to bypass the... (3 Replies)
Discussion started by: [MA]Flying_Meat
3 Replies

4. UNIX for Dummies Questions & Answers

Network Woes!! Please help! :confused:

Hello, We have an old Axil running SunOS Release 5.5.1. Recently, we updated our network, so the gateway and domain changed. Our network admin forgot (or didn't know) that we had this machine on the network, so it quietly lost its mind. Now we are trying to add it back to the network. He... (5 Replies)
Discussion started by: mrbig1492
5 Replies

5. Solaris

Remote CD woes

Good Day, I've remotely mounted a cdrom (no problems theere). The kicker is I can see the directories on the remote CD bout I can't see the files. What am I doing wrong? I'm logged in as root on both systems. All the permissions seem okay - what am I missing? Thanks (2 Replies)
Discussion started by: greg69
2 Replies

6. Solaris

pkgadd woes

Morning all, I am attempting to load a package from a Solaris 8 CDROM. This fails with the error : "pkgadd: ERROR: unable to access pkgmap file </cdrom/ .........../SUNWlibC/pkgmap> No changes were made to the system" Any help would be appreciated Andy (6 Replies)
Discussion started by: AndyD
6 Replies

7. AIX

IVM vs. HMC woes

I have a running VIO server that was managed via IVM. We made the (apparent) mistake of trying to connect a HMC server to it. Other than making a connection, no work has been done via HMC. We've since decided we don't want to use HMC and it's been powered off for a couple of weeks. However,... (1 Reply)
Discussion started by: cjs226
1 Replies

8. Solaris

Locale woes

Greetings Forumers! I've been fighting a locale problem on a v490 running Solaris 10 u4 (8/07). When I login to the system, I get several "locale" error messages: user1's password: Last login: Wed May 26 2010 09:14:13 -0400 from system1 You have mail. couldn't set locale correctly couldn't... (0 Replies)
Discussion started by: bluescreen
0 Replies

9. Solaris

Jumpstart woes

Hey, I have been battling with jumpstart for the past few days. Interface nxge0 is set on a vlan: nxge0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2 inet 0.0.0.0 netmask ff000000 ether 0:21:28:3c:a0:6 nxge998000:... (0 Replies)
Discussion started by: stantonnet
0 Replies

10. AIX

Samba Woes

Hi all With the recent virus attacks we have been tasked with upgrading Samba to a "secure" version. Currently running 3.0.29a and looking to put the latest version down 4.6.5. Being a lazy bod I have only ever installed this, a long time ago, when you could get it in BFF filesets. Have... (6 Replies)
Discussion started by: splattty
6 Replies

LEARN ABOUT SUSE

conch

CONCH(1)						    BSD General Commands Manual 						  CONCH(1)

NAME

     conch -- Conch SSH client

SYNOPSIS

     conch [-AaCfINnrsTtVvx] [-c cipher_spec] [-e escape_char] [-i identity_file] [-K connection_spec] [-L port:host:hostport] [-l user]
	   [-m mac_spec] [-o openssh_option] [-p port] [-R port:host:hostport] [user@] hostname [command]

DESCRIPTION

     conch is a SSHv2 client for logging into a remote machine and executing commands.	It provides encrypted and secure communications across a
     possibly insecure network.  Arbitrary TCP/IP ports can also be forwarded over the secure connection.

     conch connects and logs into hostname (as user or the current username).  The user must prove her/his identity through a public-key or a
     password.	Alternatively, if a connection is already open to a server, a new shell can be opened over the connection without having to reau-
     thenticate.

     If command is specified, command is executed instead of a shell.  If the -s option is given, command is treated as an SSHv2 subsystem name.

   Authentication
     Conch supports the public-key, keyboard-interactive, and password authentications.

     The public-key method allows the RSA or DSA algorithm to be used.	The client uses his/her private key, $HOME/.ssh/id_rsa or
     $HOME/.ssh/id_dsa to sign the session identifier, known only by the client and server.  The server checks that the matching public key is
     valid for the user, and that the signature is correct.

     If public-key authentication fails, conch can authenticate by sending an encrypted password over the connection.

   Connection sharing
     conch has the ability to multiplex multiple shells, commands and TCP/IP ports over the same secure connection.  To disable multiplexing for a
     connection, use the -I flag.

     The -K option determines how the client connects to the remote host.  It is a comma-separated list of the methods to use, in order of prefer-
     ence.  The two connection methods are 'unix' (for connecting over a multiplexed connection) and 'direct' (to connect directly).  To disable
     connecting over a multiplexed connection, do not include 'unix' in the preference list.

     As an example of how connection sharing works, to speed up CVS over SSH:

     conch --noshell --fork -l cvs_user cvs_host
     set CVS_RSH=conch

     Now, when CVS connects to cvs_host as cvs_user, instead of making a new connection to the server, conch will add a new channel to the exist-
     ing connection.  This saves the cost of repeatedly negotiating the cryptography and authentication.

     The options are as follows:

     -A      Enables authentication agent forwarding.

     -a      Disables authentication agent forwarding (default).

     -C      Enable compression.

     -c cipher_spec
	     Selects encryption algorithms to be used for this connection, as a comma-separated list of ciphers in order of preference.  The list
	     that conch supports is (in order of default preference): aes256-ctr, aes256-cbc, aes192-ctr, aes192-cbc, aes128-ctr, aes128-cbc,
	     cast128-ctr, cast128-cbc, blowfish-ctr, blowfish, idea-ctr, idea-cbc, 3des-ctr, 3des-cbc.

     -e ch | ^ch | none
	     Sets the escape character for sessions with a PTY (default: '~').	The escape character is only recognized at the beginning of a line
	     (after a newline).  The escape character followed by a dot ('.') closes the connection; followed by ^Z suspends the connection; and
	     followed by the escape character sends the escape character once.	Setting the character to ``none'' disables any escapes.

     -f      Fork to background after authentication.

     -I      Do not allow connection sharing over this connection.

     -i identity_spec
	     The file from which the identity (private key) for RSA or DSA authentication is read.  The defaults are $HOME/.ssh/id_rsa and
	     $HOME/.ssh/id_dsa.  It is possible to use this option more than once to use more than one private key.

     -K connection_spec
	     Selects methods for connection to the server, as a comma-separated list of methods in order of preference.  See Connection sharing
	     for more information.

     -L port:host:hostport
	     Specifies that the given port on the client host is to be forwarded to the given host and port on the remote side.  This allocates a
	     socket to listen to port on the local side, and when connections are made to that socket, they are forwarded over the secure channel
	     and a connection is made to host port hostport from the remote machine.  Only root can forward privieged ports.

     -l user
	     Log in using this username.

     -m mac_spec
	     Selects MAC (message authentication code) algorithms, as a comma-separated list in order of preference.  The list that conch supports
	     is (in order of preference): hmac-sha1, hmac-md5.

     -N      Do not execute a shell or command.

     -n      Redirect input from /dev/null.

     -o openssh_option
	     Ignored OpenSSH options.

     -p port
	     The port to connect to on the server.

     -R port:host:hostport
	     Specifies that the given port on the remote host is to be forwarded to the given host and port on the local side.	This allocates a
	     socket to listen to port on the remote side, and when connections are made to that socket, they are forwarded over the secure channel
	     and a connection is made to host port hostport from the client host.  Only root can forward privieged ports.

     -s      Reconnect to the server if the connection is lost.

     -s      Invoke command (mandatory) as a SSHv2 subsystem.

     -T      Do not allocate a TTY.

     -t      Allocate a TTY even if command is given.

     -V      Display version number only.

     -v      Log to stderr.

     -x      Disable X11 connection forwarding (default).

AUTHOR

     Written by Paul Swartz <z3p@twistedmatrix.com>.

REPORTING BUGS

     To report a bug, visit http://twistedmatrix.com/bugs/

COPYRIGHT

     Copyright (C) 2002-2008 Twisted Matrix Laboratories.
     This is free software; see the source for copying conditions.  There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR
     PURPOSE.

SEE ALSO

     ssh(1)

BSD
								   May 22, 2004 							       BSD
All times are GMT -4. The time now is 06:27 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy