Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: SSH login hangs, serial console works
Operating Systems AIX SSH login hangs, serial console works Post 302412448 by bakunin on Monday 12th of April 2010 02:26:09 PM
Old 04-12-2010
A typical problem is a removed access to the random-device. This is how it comes to this:

Some security-idiots without any semblance of UNIX-knowhow prescribe a UMASK of 277 (instead of the system default of 022). This causes new files, directories, etc. to be created without any access for users per default (which is a "great" idea in itself, because root is supposed not to work for the users anyway, is he?). If such a root-account now touches /dev/random somehow no user can use it any more and ssh (that is: the underlying OpenSSL-library) will hang, because this exception is not foreseen and hence not taken care of.

I have seen this sort of idiocy with the UMASK now at least 3 times in different places so i presume there is some "security"-primer out written by some malevolent computer-hater with a hidden agenda to render all UNIX-systems useless.

I hope this helps.

bakunin
 

9 More Discussions You Might Find Interesting

1. AIX

Installing via serial console

I'm stuck - when I boot the machine and hit 5 on the keyboard, all I get is an SP login. Can someone give me some tips on how to get to the install via the serial port? (2 Replies)
Discussion started by: tb0ne
2 Replies

2. AIX

Not able to login as normal users through console /telnet/ssh

Hi , I am having problem,users are not able to login through ssh or telnet.Only we can login as root user in console. Restarted telnet and sshd ,no luck. Any ideas. AIX -- 5.2 ML 07 Thanks, MNK (1 Reply)
Discussion started by: mnkfre
1 Replies

3. HP-UX

serial console hangs

I have a HP Visualize C200 running hpux that I am trying to boot into using a null modem through com1 from my Sun Ultra 10. I get all the way to the login prompt and then it becomes innactive and wont let me access the machine anymore. Any ideas? (2 Replies)
Discussion started by: trajek
2 Replies

4. Programming

Works from console but not when clicked in KDE

why is it that: #include <sys/stat.h> #include <stdio.h> int main(int argc, char **argv) { mkdir("testDir", S_IRUSR|S_IWUSR|S_IXUSR); return 0; } works from the console when i type ./a.out but when clicked on from a window manager, it does diddly squat??? Interested to... (8 Replies)
Discussion started by: jasonkb
8 Replies

5. Solaris

start /SP/console hangs in X4500

when I type start /SP/console... the console shows up but i cannot type anything over there. I do not understand what might be the reason for that. -> start /SP/console Are you sure you want to start /SP/console (y/n)? y Serial console started. To stop, type ESC ( I pressed enter many... (8 Replies)
Discussion started by: bharu_sri
8 Replies

6. Solaris

script hangs when outputing to /dev/console

I am running solaris 8 on a sparcs box. The system is connected to a lightwave console server. I have a script that hangs when sending output to '/dev/console'. Any ideas? -V (2 Replies)
Discussion started by: vada010
2 Replies

7. UNIX for Dummies Questions & Answers

$USER is not set in remsh but works fine via ssh login

1) ssh a@b echo $USER it display the correct value as a (even though i have not defined it in .profile) 2) remsh b -l a echo $USER it does not display the value as a (variable is not set any idea why $USER variable is not initialized when i login via remsh or rlogin but shows the... (10 Replies)
Discussion started by: reldb
10 Replies

8. UNIX for Dummies Questions & Answers

IP Console Vs Serial console.

Hi Gurus, Can some one explain me the difference between a IP console and a serial console. (1 Reply)
Discussion started by: rama krishna
1 Replies

9. Solaris

How to setup a serial console?

i am running solaris 10 in my vmware workstation. How to setup a console for my solaris box. in Vmware i could see a serial port option. can some one help me on how i can setup a console . (0 Replies)
Discussion started by: chidori
0 Replies

LEARN ABOUT LINUX

ssh-copy-id

SSH-COPY-ID(1)						      General Commands Manual						    SSH-COPY-ID(1)

NAME

       ssh-copy-id - install your public key in a remote machine's authorized_keys

SYNOPSIS

       ssh-copy-id [-i [identity_file]] [user@]machine

DESCRIPTION

       ssh-copy-id  is	a script that uses ssh to log into a remote machine and append the indicated identity file to that machine's ~/.ssh/autho-
       rized_keys file.

       If the -i option is given then the identity file (defaults to ~/.ssh/id_rsa.pub) is used, regardless of whether there are any keys in  your
       ssh-agent.  Otherwise, if this:

	     ssh-add -L

       provides any output, it uses that in preference to the identity file.

       If  the -i option is used, or the ssh-add produced no output, then it uses the contents of the identity file.  Once it has one or more fin-
       gerprints (by whatever means) it uses ssh to append them to ~/.ssh/authorized_keys on the remote machine (creating the file, and directory,
       if necessary.)

NOTES

       This program does not modify the permissions of any pre-existing files or directories. Therefore, if the remote sshd has StrictModes set in
       its configuration, then the user's home, ~/.ssh folder, and ~/.ssh/authorized_keys file may need to have group writability  disabled  manu-
       ally, e.g. via

	     chmod go-w ~ ~/.ssh ~/.ssh/authorized_keys

       on the remote machine.

SEE ALSO

       ssh(1), ssh-agent(1), sshd(8)

OpenSSH 							 14 November 1999						    SSH-COPY-ID(1)
All times are GMT -4. The time now is 10:56 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy