Login or Register to Ask a Question and Join Our Community


AIX

Problems with SSH / telnet

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems AIX Problems with SSH / telnet
# 15  
Old 10-17-2008
Quote:
Originally Posted by shockneck
T If nobody at your datacenter can name exactly where this additional security compared to the current version of OpenSSH is you might consider using OpenSSH instead. Reason is that you will get faster and better response to questions related to a product that is widely used compared to some niche product.
I agree. If there is no bone fide security reason not to use OpenSSH, then the poster is better to switch, because he will have open support.
# 16  
Old 10-17-2008
I checked with a colleague who happened to know the Tectia product: the difference is that normal ftp can provide a chrooted environment for every user, but the sftp can't do that, at least not out of the box, while Tectias sftp does have this functionality.

This might be perceived as being "more secure" to people who have no idea at all how ftp really works, which is, sad to say, quite often the case in auditing teams who in turn come up with some some "security-enhancement" which in fact is just plain silliness. I have once heard a default umask of 777 mentioned as desirable from such folk. Its usually the administrators who have to suffer from these, ahem, ideas.

Sorry, this won't help you with your problem but now i feel some relief. ;-))

bakunin

PS: I strongly suggest that you find out if this functionality is really needed at all in your case and if it isn't (which is most likely the case) you switch to openSSL products as suggested by Neo and shockneck. And i hop this helps.

bakunin
# 17  
Old 10-17-2008
Isnt the product trying to open some closed/filtered port you know like above 9000 after having used 443 ?

Just thoughts...
# 18  
Old 10-22-2008
Thanks for the replies. I think that the root user doesn't use his .profile and /etc/profiles files and therefore can't login to the server. All of the permissions however are correct (just like in other boxes). I've checked many things together with my collegue but nothing came out of it. It's a very strange error in the system..
# 19  
Old 11-12-2008
hey,

I'm not sure of this particular version/type of ssh.. I use open ssh on AIX.. have u tried checking the entries in /etc/ssh/sshd_config?

in a fully implemented ssh environment, there should be a user@server entry under the AllowUsers key?. If you make a change to this file, the ssh demon needs a restart too.

cheers.
# 20  
Old 11-16-2008
Hille,

Have you tried setting the permission of your /home to 700.? I have strange encounters with ssh that user root can't login. Tried setting world writeable to 777 but it doesnt work. Tried 700 and the systems works.
# 21  
Old 12-11-2008
Quote:
Originally Posted by Hille
This is the output of lsuser root.

root id=0 pgrp=system groups=system,bin,sys,security,cron,audit,lp,exploit home=/ shell=/usr/bin/ksh auditclasses=general login=true su=true rlogin=true daemon=true admin=true sugroups=ALL admgroups=<all groups> tpath=nosak ttys=ALL expires=0 auth1=SYSTEM auth2=NONE umask=22 registry=files SYSTEM=compat logintimes= loginretries=0 pwdwarntime=0 account_locked=false minage=0 maxage=0 maxexpired=-1 minalpha=0 minother=0 mindiff=0 maxrepeats=8 minlen=0 histexpire=0 histsize=0 pwdchecks= dictionlist= fsize=-1 cpu=-1 data=-1 stack=-1 core=4194302 rss=65536 nofiles=20000 fsize_hard=-1 cpu_hard=-1 data_hard=-1 stack_hard=-1 time_last_login=1223971121 time_last_unsuccessful_login=1224082704 tty_last_login=/dev/pts/11 tty_last_unsuccessful_login=/dev/pts/0 host_last_login=<all servers> host_last_unsuccessful_login=server2 unsuccessful_login_count=13 roles=


The 'host_last_login' is kind of strange though because every server is listed, normally there is only 1 or so? It's like every server tried to connect at the same time, not certain though if it has anything to do with the problem.
The host_last_login is the cause of your problems, the entry is too long. Clean your /etc/security/lastlog. Probably caused by an entry in /etc/hosts with too many aliases.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Red Hat

networking problems with ftp,telnet, ssh, http

I have following problems with RHEL 5.2 Desktop installation ftp, telnet, ssh and web are not working. Web browser tries to connect to host but eventually fail with timeout. ftp, telnet and ssh simply hung, nothing happens. Basically all protocols will end up in timeout. ping, nslookup and... (2 Replies)
Discussion started by: Kainu
2 Replies

2. Shell Programming and Scripting

TELNET to SSH

Hi All, I was implementing a change of TELNET to SSH connectivity, and finding it tough at a point where I was connecting to another unix server through TELNET. ( ps -ef |grep abcd) | TELNET x.xx.xxx.xx now I when I tried to replace TELNET with SSH, i am not able to connect. ( ps -ef... (1 Reply)
Discussion started by: pranavagarwal
1 Replies

3. UNIX for Dummies Questions & Answers

Telnet and ssh in a script

dear all, I know that this question has been asked before frequently, but I really don't get it. My question is composed of several ones. First:To telnet through a script, I was told to use the way described below, and it works for me, but i don't understand the syntax here.... (3 Replies)
Discussion started by: marwan
3 Replies

4. UNIX for Dummies Questions & Answers

like ssh telnet

I want to learn some commands like ssh, telnet and others where i can be tease. thanks for help... (2 Replies)
Discussion started by: Kostantinos
2 Replies

5. UNIX for Advanced & Expert Users

about ssh and telnet

I amn't advance but i want to learn some commands where here you can help me. i don't learn easy commands but i learn if its good experience and interesting. I want to learn about ssh, telnet and how i can be miff ( i don't speek good english but i hope to understant me) thanks for any help... (1 Reply)
Discussion started by: Kostantinos
1 Replies

6. UNIX for Dummies Questions & Answers

Running Script from Telnet - Problems

...so I read "The Pragmatic Programmer" and they stressed the value of learning shell scripting! I'm in a UNIX environment but have a Windows XP workstation. I'm using Telnet to issue UNIX commands. I've done plenty of chmod's, command line ftp and stuff, but written no scripts to this point.... (1 Reply)
Discussion started by: pauljohn
1 Replies

7. UNIX for Dummies Questions & Answers

Problems with telnet.

Hi Guys! I'm trying to connect to a regatta IBM (Sun 5.8) from my recently installed Sun Blazer, but I got the following: % telnet regatta Trying 167.164.87.8 Connected to regatta Escape character is '^]' Connection closed by foreign host % Do you have any idea what the problem is?... (2 Replies)
Discussion started by: cordobapablo
2 Replies

8. UNIX for Dummies Questions & Answers

Problems with Telnet

Hi everybody I already have installed Linux Red Hat FC4 in two machines into the same net using DHCP in both of them, the network interface are working fine cuz i can surf in Internet in those machines The problem is i need to do a Telnet from one host to the other, the xinetd and telnet... (1 Reply)
Discussion started by: Lestat
1 Replies

9. UNIX for Dummies Questions & Answers

Unix SCO 5.0.6 Telnet Problems

Hello there . I have a unix box 5.0.06 , this is the error (Telnetd: All networks ports in use . Can anyone tellme how to resolve this problem. Thanks a lot . (2 Replies)
Discussion started by: josramon
2 Replies

10. UNIX for Dummies Questions & Answers

SCO openserver 5.0.6 Telnet Problems

Hi guys, Please bear with me i have a sco 5.0.6 openserver i'm telnet in to it. (via dsl) After 7 minutes it will kick me out of my program. Is there any settings that i need to change in order to stop the time out problem. I dont have any router or hub (dsl modem to nic card ) Also... (6 Replies)
Discussion started by: josramon
6 Replies
Login or Register to Ask a Question