HPE Community
Operating System - OpenVMS
1751911 Members
5185 Online
108783 Solutions
New Discussion юеВ

Detecting SSH Connections in LOGIN.COM

 
SOLVED
Go to solution
Jack Trachtman
Super Advisor

тАО10-27-2010 02:18 PM

тАО10-27-2010 02:18 PM

Detecting SSH Connections in LOGIN.COM

I'd like to differentiate between a Telnet vs an SSH connection within LOGIN.COM

So far, I see that Telnet connections assign a TN device, while SSH assigns an FT device, but FT can also represent other "virtual?" devices, so this won't work.

I've worked out a massively kludgey method where:

1) translate SYS$REM_NODE_FULLNAME to get remote node name

2) use TCPIP SHOW HOST to convert name to IP address

3) PIPE TCPIP SHO DEV | ( SEARCH SYS$PIPE ip-address ; @script-to-look-for-string-SSH-and-port#-22 )

There's gotta be some way simpler way. A F$GETDEV("TT","some-param") maybe?

???

TIA
0 Kudos
5 REPLIES 5
Chris Barratt
Frequent Advisor

тАО10-27-2010 03:12 PM

тАО10-27-2010 03:12 PM

Solution

Re: Detecting SSH Connections in LOGIN.COM

Hi Jack,

This is how we do it.

$ term = f$getjpi(0,"TERMINAL")
$ if (term .eqs. "") .or. (f$length(term) .le. 3)
$ then exit
$ endif
$ if f$extract(0,3,term) .nes. "FTA" then exit ! SSH terminals are FTA devices
$ if .not. f$getdvi(term,"TT_SECURE") then exit ! but so are Decterm ones, so check the SECURE attrib of term

Seems to do the trick.
Cheers,
Chris
0 Kudos
Steven Schweda
Honored Contributor

тАО10-27-2010 03:21 PM

тАО10-27-2010 03:21 PM

Re: Detecting SSH Connections in LOGIN.COM

Compare: F$GETDVI( "TT:", "TT_ACCPORNAM")
0 Kudos
John Gillings
Honored Contributor

тАО10-27-2010 04:53 PM

тАО10-27-2010 04:53 PM

Re: Detecting SSH Connections in LOGIN.COM

Jack,

I'd check:
1) non-null SYS$REM_NODE
2) F$GETDVI("TT","DEVCLASS") = DC$_TERM (66).
3) F$GETDVI("TT","TT_SECURE")

I'm fairly sure all 3 will only be true for an SSH connection.

You could also check F$MODE(), but I'm not sure if it would add any value.
A crucible of informative mistakes
0 Kudos
Richard Whalen
Honored Contributor

тАО10-28-2010 05:55 AM

тАО10-28-2010 05:55 AM

Re: Detecting SSH Connections in LOGIN.COM

If the system is running MultiNet, TCPware or Process Software's SSH for TCP/IP Services
then the following is the best way to tell:
Look for "ssh/" in the first part of tt_accpornam, as in:

$ write sys$output f$getdvi("tt:","tt_accpornam")
ssh/foo.bar.com:2338

Check the logical MULTINET_KERNEL_BASE_ADDRESS to determine if MultiNet is running.
Check for the logical TCPWARE_NETCP_MBX to determine if TCPware is running.
0 Kudos
Jack Trachtman
Super Advisor

тАО10-28-2010 10:31 AM

тАО10-28-2010 10:31 AM

Re: Detecting SSH Connections in LOGIN.COM

Thanks - TT_SECURE was what I needed!
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.