06-08-2009
Solaris 9, ssh and openssh
I set the RETRIES and DISABLETIME in /etc/default/login on 2 systems:
- 1 Solaris 9 system running Sun SSH
- 1 Solaris 9 system running Openssh 5.2 P1
I expected that after n failed logins, the login process will hang for n seconds.
It does when the attempted login is done at the console but when logging in via ssh or openssh, the /etc/default/login does not even get read.
I have the output from truss in both cases to prove that.
What I tried, based on suggestion from different forums, was:
- set UsePAM yes and ChallengeResponseAuthentication=no same result
- set UseLogin yes same result.
How can I get ssh or openssh to read values in /etc/defalt/login?
Thanks you!
10 More Discussions You Might Find Interesting
1. Solaris
I am currently setting up rdiff-backup to use ssh to connect and remotely backup and retrieve data. I am doing so by creating rsa keys for each server and copying the relevant key to the /.ssh folder on the relevant server.
All seems to work well when severs running solaris 8 with ssh 3.6.1 are... (6 Replies)
Discussion started by: falklandtim
6 Replies
2. Cybersecurity
I'm not sure if this is appropriate for the forum, but I figured it was security related, so here goes...
I'm writing an anlaysis for my group about moving some of the old internet protocols (rsh, rlogin, etc...) to the SSH suite of tools. An outside security group recommended a commercial... (7 Replies)
Discussion started by: jalburger
7 Replies
3. Solaris
Hello,
I have installed OpenSSH_3.5p1 On Solaris 5.6. Specifically, I have installed these packages:
OBSDssh-3.5p1-sparc-sun4u-5.6.pkg
DJBdaemon-0.76-sparc-sun4u-5.6.pkg
ANDIrand-0.7-sparc-sun4u-5.6.pkg
All three packages have installed successfully. From this point, I can... (8 Replies)
Discussion started by: chucker8
8 Replies
4. Solaris
Hi,
I would like to login from a Sun server running ssh:
Sun_SSH_1.1, SSH protocols 1.5/2.0, OpenSSL 0x0090704f
to
ssh: SSH Secure Shell 3.0.1 on sparc-sun-solaris2.6
How can I achieve this?
Thanks a million in advance (1 Reply)
Discussion started by: newbewie
1 Replies
5. UNIX for Dummies Questions & Answers
I am using OpenSSH on my sun servers.
There is another suite of sun servers attempting to SSH into my machines.
I am running ssh -vv:
OpenSSH_4.4p1, OpenSSL 0.9.8d 28 Sep 2006
the other guy is running the sun version of ssh (i don't know what/if any differences there are between... (7 Replies)
Discussion started by: EWTGPAC
7 Replies
6. UNIX for Dummies Questions & Answers
I have a FreeBSD server on my home network. It is hooked to the router with an Ethernet cable. Both the server and the router are in the basement. The other computers in the house are upstairs, wireless. So the server's local IP address is set outside the wireless pool, and suppose it's... (1 Reply)
Discussion started by: gabi
1 Replies
7. Solaris
hi All,
We tried to establish a connection from OpenSSH3.8.1 running on Windows Box to SunSSH-1.1 running on Solaris 10. Please see the debug statements.
C:\Documents and Settings\sadmin\.ssh>ssh sadmin@10.4.3.8 -v -v -v
OpenSSH_3.8.1p1, OpenSSL 0.9.7d 17 Mar 2004
debug1: Reading... (2 Replies)
Discussion started by: venusunil
2 Replies
8. UNIX for Advanced & Expert Users
Hi all,
I have a Solaris 10 server with SUN_SSH_1.1 installed.
I want to restrict a user via SFTP to only be able to access one directory. I've written a little script in .profile which works perfectly for an ssh login but it appears sftp doesn't read the .profile file so it doesn't work.
... (2 Replies)
Discussion started by: Donkey25
2 Replies
9. Solaris
which should i prefer to install in my system openssh or ssh package provided by SUN by default. can i have two packages installed at the same time? (2 Replies)
Discussion started by: chidori
2 Replies
10. Red Hat
There was a security analysis run on one server which has RHEL 5.8 installed and it is showing security vulnerabilities with respect to ssh in OpenSSH with reference no CVE-2007-4752. The vulnerability solution in the security report is showing solution as below:
1) Download and apply the... (3 Replies)
Discussion started by: RHCE
3 Replies
LEARN ABOUT MOJAVE
nologin
NOLOGIN(5) BSD File Formats Manual NOLOGIN(5)
NAME
nologin -- disallow logins
DESCRIPTION
Programs such as login(1) disallow logins if the nologin file exists. The programs display the contents of nologin to the user if possible
and interrupt the login sequence. This makes it simple to temporarily prevent incoming logins systemwide.
To disable logins on a per-account basis, investigate nologin(8).
SECURITY
The nologin file is ignored for user root by default.
IMPLEMENTATION NOTES
The nologin feature is implemented through login.conf(5), which allows to change the pathname of the file and to extend the list of users
exempt from temporary login restriction.
PAM-aware programs can be selectively configured to respect nologin using the pam_nologin(8) module via pam.conf(5).
The nologin file will be removed at system boot if it resides in /var/run and cleanvar_enable is set to ``YES'' in rc.conf(5), which is
default. Therefore system reboot can effectively re-enable logins.
FILES
/var/run/nologin default location of nologin
SEE ALSO
login(1), login.conf(5), pam.conf(5), rc.conf(5), nologin(8), pam_nologin(8), shutdown(8)
BSD
May 10, 2007 BSD