cancel
Showing results for 
Search instead for 
Did you mean: 

Issue with ssh-->Help

Jonathan Grymes
Frequent Advisor

Issue with ssh-->Help

I have tcp wrappers/tcpd.conf configured. My hosts.allow has IPs configured but now Im getting access denied messages.

Only a hostname is being presented and NOT the IP address as expected.

 

Here is an example of whats showing up in the syslog:

Mar 24 09:37:19 fgexsh42 sshd[4352]: refused connect from ltx8pce00345055.northgrum.com
Mar 24 09:50:20 fgexsh42 sshd[4904]: refused connect from lvadpce00364752.northgrum.com

 

 

Here is what is expected and working on another system:

Accepted keyboard-interactive/pam for jogryme1 from 158.114.100.170

 

Im not sure what has changed but access was working last week.

 

 

Here is teh tcpd.conf file:

# Timeout value for client's user name lookup
##
#rfc931_timeout 5

##
# Action to be taken on reverse lookup failure
##
#on_reverselookup_fail deny

##
# Logging information level
##
log_level extended

 

Thanks

Jon

 

 

P.S. This thread has been moved from HP-UX > System Administration to HP-UX > networking. - Hp Forum moderator

2 REPLIES
Steven Schweda
Honored Contributor

Re: Issue with ssh-->Help

   I know nothing, but ...

> [...] My hosts.allow has IPs configured [...]

   With my weak psychic powers, I'd need to trust your judgement.

> Only a hostname is being presented and NOT the IP address as expected.

> #on_reverselookup_fail deny

   I'll guess that these comments reflect the defaults.

   So, do DNS look-ups work from your system(s)?  Even a forward DNS
look-up fails from mine (but I'm outside your domain/subnet):

ALP $ nsl ltx8pce00345055.northgrum.com
Server:  alp-l.antinode.info
Address:  10.0.0.9

*** alp-l.antinode.info can't find ltx8pce00345055.northgrum.com:

 Non-existent host/domain

Jonathan Grymes
Frequent Advisor

Re: Issue with ssh-->Help

This issue has been resolved. There was a new subnet that needed to be added to the hosts.allow file. Also a tweak on the local firewall.