08-28-2012
Again, do you login on the console OR via ssh?
If you try to login via ssh, then it's clear. root is not allowed to login via ssh by default for security reasons.
10 More Discussions You Might Find Interesting
1. Red Hat
Hi all,
Thanks for reading and any posts.
Quick question, has anyone out there got any suggestions for standards of security for Redhat enterprise 3. We are making an RAC cluster Oracle application using Oracle 9i (hopefully moving to 10g sooner rather than later).
Thanks again for any... (0 Replies)
Discussion started by: B14speedfreak
0 Replies
2. Red Hat
Hello;
I have 2 node Redhat Cluster (RHEL4 U4 and Cluster Suite) I'm using mc_data fiber channel switch for fencing
when I want to fence manually using
fence_mcdata -a x.x.x. -l xxx -p xxxx -n 5 -o disable
following messages appears
fencing node "test1"
agent "fence_mcdata" reports:... (0 Replies)
Discussion started by: sakir19
0 Replies
3. Red Hat
Hi All,
I have to upgrade python installed on my Redhat enterprise Linux 4. I downloaded the latest python package from python website but not able to install the new package as the make command itself goes on running for more than a day. Can some help me regarding this. Is ther any method to... (2 Replies)
Discussion started by: Praveen H
2 Replies
4. Red Hat
Hi,
I would like to know if should i patch my system and sshd based on the version that i have here below:
cat /etc/redhat-release
Red Hat Enterprise Linux ES release 4 (Nahant Update 5)
------------
uname -a: redhat kernel version and type (64-bit or not)
Linux server2 2.6.9-55.ELsmp... (2 Replies)
Discussion started by: lamoul
2 Replies
5. Red Hat
Hi
i installed samba-client-3.0.23c-2 on Redhat Server but cat not start
#service smb start. it gives error
unrecognized smb
I checked
samba-common-3.0.23c-2
# rpm -qa |grep smb
pam_smb-1.1.7-7.2.1
# rpm -qa |grep samba
samba3-client-3.2.15-40.el5
Could someone help please?
... (1 Reply)
Discussion started by: lamoul
1 Replies
6. Red Hat
hi all
do i need to add rc. prefix on the stop script all the time especially on redhat 5 enterprise? like below
ln -s /etc/init.d/rc.stopdb2 /etc/rc0.d/K01rc.stopdb2
and on the /etc/rc.local, i need to add this only
touch /var/lock/subsys/stopdb2
Is that going to work?
thanks... (1 Reply)
Discussion started by: itik
1 Replies
7. Red Hat
Hello
I have been asked to provide a security patch analysis of servers in my environment. For HPUX and Solaris there are tools wich can be loaded onto the servers to do this. However I do not know of one for Redhat . At this point I must mentioned that the Redhat servers are behind a firewall... (2 Replies)
Discussion started by: dmsmith32
2 Replies
8. Red Hat
Hello,
I have installed Red Hat 6.2 version & KVM installed, file system limited is only 40GB, how do i create more than 40 GB ( I need to install more than 100 GB file system ) Could you please me.
Thanks... (2 Replies)
Discussion started by: Inamadugu
2 Replies
9. Red Hat
Hello, I'm using dell inspiron 14R laptop and I installed Redhat enterprise 6.2 on this. After successfully installation i did not found any network interface on this.
when i'm trying to load/add qeth driver . The driver is not found showing this message.
Bash: lsmod | grep qeth
Bash:... (4 Replies)
Discussion started by: dearsumon
4 Replies
10. Fedora
Hi,
please can any one tell me where can i download redhat linux 6.4 for training purpose?
thanks & Regards (1 Reply)
Discussion started by: younusdba
1 Replies
LEARN ABOUT SUNOS
ssh-keysign
ssh-keysign(1M) ssh-keysign(1M)
NAME
ssh-keysign - ssh helper program for host-based authentication
SYNOPSIS
ssh-keysign
ssh-keysign is used by ssh(1) to access the local host keys and generate the digital signature required during host-based authentication
with SSH protocol version 2. This signature is of data that includes, among other items, the name of the client host and the name of the
client user.
ssh-keysign is disabled by default and can be enabled only in the global client configuration file /etc/ssh/ssh_config by setting Host-
basedAuthentication to yes.
ssh-keysign is not intended to be invoked by the user, but from ssh. See ssh(1) and sshd(1M) for more information about host-based authen-
tication.
/etc/ssh/ssh_config
Controls whether ssh-keysign is enabled.
/etc/ssh/ssh_host_dsa_key
/etc/ssh/ssh_host_rsa_key
These files contain the private parts of the host keys used to generate the digital signature. They should be owned by root, readable
only by root, and not accessible to others. Because they are readable only by root, ssh-keysign must be set-uid root if host-based
authentication is used.
ssh-keysign will not sign host-based authentication data under the following conditions:
o If the HostbasedAuthentication client configuration parameter is not set to yes in /etc/ssh/ssh_config. This setting cannot be overri-
den in users' ~/.ssh/ssh_config files.
o If the client hostname and username in /etc/ssh/ssh_config do not match the canonical hostname of the client where ssh-keysign is
invoked and the name of the user invoking ssh-keysign.
In spite of ssh-keysign's restrictions on the contents of the host-based authentication data, there remains the ability of users to use it
as an avenue for obtaining the client's private host keys. For this reason host-based authentication is turned off by default.
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWsshu |
+-----------------------------+-----------------------------+
|Interface Stability |Evolving |
+-----------------------------+-----------------------------+
ssh(1), sshd(1M), ssh_config(4), attributes(5)
AUTHORS
Markus Friedl, markus@openbsd.org
HISTORY
ssh-keysign first appeared in Ox 3.2.
9 Jun 2004 ssh-keysign(1M)