Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
cancel
Showing results for 
Search instead for 
Did you mean: 

Issue with ssh-->Help

Jonathan Grymes
Frequent Advisor

Issue with ssh-->Help

I have tcp wrappers/tcpd.conf configured. My hosts.allow has IPs configured but now Im getting access denied messages.

Only a hostname is being presented and NOT the IP address as expected.

 

Here is an example of whats showing up in the syslog:

Mar 24 09:37:19 fgexsh42 sshd[4352]: refused connect from ltx8pce00345055.northgrum.com
Mar 24 09:50:20 fgexsh42 sshd[4904]: refused connect from lvadpce00364752.northgrum.com

 

 

Here is what is expected and working on another system:

Accepted keyboard-interactive/pam for jogryme1 from 158.114.100.170

 

Im not sure what has changed but access was working last week.

 

 

Here is teh tcpd.conf file:

# Timeout value for client's user name lookup
##
#rfc931_timeout 5

##
# Action to be taken on reverse lookup failure
##
#on_reverselookup_fail deny

##
# Logging information level
##
log_level extended

 

Thanks

Jon

 

 

P.S. This thread has been moved from HP-UX > System Administration to HP-UX > networking. - Hp Forum moderator

2 REPLIES
Steven Schweda
Honored Contributor

Re: Issue with ssh-->Help

   I know nothing, but ...

> [...] My hosts.allow has IPs configured [...]

   With my weak psychic powers, I'd need to trust your judgement.

> Only a hostname is being presented and NOT the IP address as expected.

> #on_reverselookup_fail deny

   I'll guess that these comments reflect the defaults.

   So, do DNS look-ups work from your system(s)?  Even a forward DNS
look-up fails from mine (but I'm outside your domain/subnet):

ALP $ nsl ltx8pce00345055.northgrum.com
Server:  alp-l.antinode.info
Address:  10.0.0.9

*** alp-l.antinode.info can't find ltx8pce00345055.northgrum.com:

 Non-existent host/domain

Jonathan Grymes
Frequent Advisor

Re: Issue with ssh-->Help

This issue has been resolved. There was a new subnet that needed to be added to the hosts.allow file. Also a tweak on the local firewall.