07-28-2011
I forgot to add - make sure you have sufficient privileges, like owning the proper files, like the ones in /var/run, etc, just as well as /etc/hosts.allow
and /etc/hosts.deny do not prevent the connection, that is, some general connectivity problem.
Other than that, go to your user's home folder and find the (.ssh)/known_hosts file, delete the entry for this particular host, and then retry the connection.
Further troubleshooting tips: invoke the command with verbose debug SSH flags, like -vvv, for example, as I'm not aware of your version of SSH (and vendor).
10 More Discussions You Might Find Interesting
1. AIX
Hello everyone!
I searched high and low in the forum's on this site before I started a thread, but couldn't quite find my resolution. Even though I got good hits on SFTP.
I'm working on a script on my AIX 5.3 system to sftp (OpenSSH) files to another remote site that is running "Secure FTP"... (2 Replies)
Discussion started by: Exit42
2 Replies
2. AIX
Hi, all
I am using non-secure ftp on AIX 4.3.3.
But, I am facing IT audit, have to install secureftp on AIX 4.3.3 ftp server.
Most fo all, I have no experience secureftp.
sftp is equl to ssh ?
I am searching "sftp, secureftp" but it was difficult to find binary code to install, but... (1 Reply)
Discussion started by: wolfhyun
1 Replies
3. AIX
Hello,
On my test host I've installed the SSH soft. Created the Public & Private key for sftp and all works fine. Now I want to modify my scheduled scripts, that runs in batch mode, to work automatically. How can I bypass the Passphrase request when I start my sftp connection.
I modified the... (1 Reply)
Discussion started by: Fima62
1 Replies
4. AIX
Hi,
I'm not sure if this has been solved in this forum already but please do help me out if possible. Basically, I've already setup a passwordless SSH connection between 2 AIX IDs (say ID-1 and ID-2) with a Mainframe server ID (say MVSID). I'm able to successfully do an SSH from the AIX server to... (1 Reply)
Discussion started by: sambeet
1 Replies
5. Shell Programming and Scripting
I am having an issue while trying to run the Net::SFTP module. I have been able to install this on several machines before but have never had this problem. When I am running a simple script to test the sftp it dies but does not trigger the print statement for my error. The last line is in red.
... (0 Replies)
Discussion started by: kofs79
0 Replies
6. Emergency UNIX and Linux Support
Dear all,
I was given the ID_DSA.pub by an MVS user, which I placed in the appropriate user's authorized_keys file. When the user tris to SFTP from their side to the AIX box, the following error is got:
error: debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY ... (6 Replies)
Discussion started by: ggayathri
6 Replies
7. AIX
Dear all,
I have some files to move to an SFTP server that someone else is providing on the public internet. The source for the file is on AIX, and although I have the sftp client installed, I'm stuck. The process would be automated (probably ksh script or perhaps as a C executable) so there... (2 Replies)
Discussion started by: rbatte1
2 Replies
8. Shell Programming and Scripting
All,
Is there a possibility to sftp a file from one AIX server to another AIX server with password? I do not want to use public or private key option as we would have required privileges for creating the keys. So Please provide the needful with a sample script.
Thanks in Advance, ... (0 Replies)
Discussion started by: kuppu.uncle
0 Replies
9. Red Hat
Hello all,
simple network problem:
host1 -> jumphost -> host2
alias ss='ssh -t -q user2@jumphost -q -t -t ssh -l user2 '
ss host2 works like a charm but scp and scripts don't cooperate very much (normal).
My ssh key (user1) is already deployed on jumphost but NOT on host2 as i'm... (0 Replies)
Discussion started by: maverick72
0 Replies
10. AIX
Hello.
I am using AIX 6 and If wish to receive more than 500 files via SFTP, I get some time out errors. Could you please advise where is the limit for number of concurrent transfers setup in AIX Box or what is the limit and can that be changed?
Many Thanks (3 Replies)
Discussion started by: panchpan
3 Replies
LEARN ABOUT REDHAT
ssh-keyscan
SSH-KEYSCAN(1) BSD General Commands Manual SSH-KEYSCAN(1)
NAME
ssh-keyscan -- gather ssh public keys
SYNOPSIS
ssh-keyscan [-v46] [-p port] [-T timeout] [-t type] [-f file] [host | addrlist namelist] [...]
DESCRIPTION
ssh-keyscan is a utility for gathering the public ssh host keys of a number of hosts. It was designed to aid in building and verifying
ssh_known_hosts files. ssh-keyscan provides a minimal interface suitable for use by shell and perl scripts.
ssh-keyscan uses non-blocking socket I/O to contact as many hosts as possible in parallel, so it is very efficient. The keys from a domain
of 1,000 hosts can be collected in tens of seconds, even when some of those hosts are down or do not run ssh. For scanning, one does not
need login access to the machines that are being scanned, nor does the scanning process involve any encryption.
The options are as follows:
-p port
Port to connect to on the remote host.
-T timeout
Set the timeout for connection attempts. If timeout seconds have elapsed since a connection was initiated to a host or since the
last time anything was read from that host, then the connection is closed and the host in question considered unavailable. Default
is 5 seconds.
-t type
Specifies the type of the key to fetch from the scanned hosts. The possible values are ``rsa1'' for protocol version 1 and ``rsa''
or ``dsa'' for protocol version 2. Multiple values may be specified by separating them with commas. The default is ``rsa1''.
-f filename
Read hosts or addrlist namelist pairs from this file, one per line. If - is supplied instead of a filename, ssh-keyscan will read
hosts or addrlist namelist pairs from the standard input.
-v Verbose mode. Causes ssh-keyscan to print debugging messages about its progress.
-4 Forces ssh-keyscan to use IPv4 addresses only.
-6 Forces ssh-keyscan to use IPv6 addresses only.
SECURITY
If a ssh_known_hosts file is constructed using ssh-keyscan without verifying the keys, users will be vulnerable to attacks. On the other
hand, if the security model allows such a risk, ssh-keyscan can help in the detection of tampered keyfiles or man in the middle attacks which
have begun after the ssh_known_hosts file was created.
EXAMPLES
Print the rsa1 host key for machine hostname:
$ ssh-keyscan hostname
Find all hosts from the file ssh_hosts which have new or different keys from those in the sorted file ssh_known_hosts:
$ ssh-keyscan -t rsa,dsa -f ssh_hosts |
sort -u - ssh_known_hosts | diff ssh_known_hosts -
FILES
Input format:
1.2.3.4,1.2.4.4 name.my.domain,name,n.my.domain,n,1.2.3.4,1.2.4.4
Output format for rsa1 keys:
host-or-namelist bits exponent modulus
Output format for rsa and dsa keys:
host-or-namelist keytype base64-encoded-key
Where keytype is either ``ssh-rsa'' or ``ssh-dsa''.
/etc/ssh/ssh_known_hosts
BUGS
It generates "Connection closed by remote host" messages on the consoles of all the machines it scans if the server is older than version
2.9. This is because it opens a connection to the ssh port, reads the public key, and drops the connection as soon as it gets the key.
SEE ALSO
ssh(1), sshd(8)
AUTHORS
David Mazieres <dm@lcs.mit.edu> wrote the initial version, and Wayne Davison <wayned@users.sourceforge.net> added support for protocol ver-
sion 2.
BSD
January 1, 1996 BSD