General
cancel
Showing results for 
Search instead for 
Did you mean: 

ssh stopped working after depo patch update on hp 11.23

shujath ali khan
Occasional Visitor

ssh stopped working after depo patch update on hp 11.23

accept 'root' it is not allowing any user to login. we use sshd2 for login.
It authenticate & then immediately disconnect the user. Please help based on ur exp.
2 REPLIES
Viktor Balogh
Honored Contributor

Re: ssh stopped working after depo patch update on hp 11.23

try calling the ssh client in verbose mode:

# ssh -v
# ssh -vv
# ssh -vvv

what's in /var/adm/syslog/syslog.log ? any related messages to this sshd problem?
****
Unix operates with beer.
Bob_Vance
Esteemed Contributor

Re: ssh stopped working after depo patch update on hp 11.23

What ssh package are you running?
What patch(es) was it?
Why would it affect ssh?


In addition to 'ssh -v', you can run the daemon sshd in debug mode:

You would run it on a different port than :22.
It is a one-off execution; that is, it accepts one login and then terminates.

E.g., using port :922

check for available port
(:22 is normal)

Pine3 ## netstat -an | grep LISTEN | grep '\.22'
tcp 0 0 *.22 *.* LISTEN
tcp 0 0 *.22 *.* LISTEN

so we have our normal sshd listening on port :22.

Pine3 ## netstat -an | grep LISTEN | grep '\.922'
<>

so port :922 is available.


NOTE: the following sshd command runs in foreground and will tie up this particular screen/login, so you'll need multiple existing logins to test from this system,
or must test it with ssh -v from another system.

Pine3 ## sshd -p 922 -d
sshd re-exec requires execution with an absolute path

Pine3 ## which sshd
/usr/sbin/sshd

Pine3 ## /usr/sbin/sshd -p 922 -d
debug1: Config token is protocol
debug1: Config token is kerberosauthentication
....

My screen for this login is now tied up and dumping sshd debug info.
Verify that our debug guy is running on port :922

Pine3 ## netstat -an | grep LISTEN | grep '\.922'
tcp 0 0 *.922 *.* LISTEN
tcp 0 0 *.922 *.* LISTEN



test non-root login

Pine3 ## ssh -v bobv@pine3 -p 922
OpenSSH_5.1p1+sftpfilecontrol-v1.2-hpn13v5, OpenSSL 0.9.7m 23 Feb 2007
HP-UX Secure Shell-A.05.10.007, HP-UX Secure Shell version
...

You'll see debug output on BOTH the ssh -v screen and the sshd -d screen.




You could use the is opportunity to download (free) and install the latest HP ssh package.

https://h20392.www2.hp.com/portal/swdepot/displayProductsList.do?category=ISS

then
HP-UX Secure Shell

You can get other nice tools, like
MD5 Secure Checksum

Also a bunch of open source stuff (can select individually) out of "Internet Express", like 'lsof'.


bv
"The lyf so short, the craft so long to lerne." - Chaucer