HPE Community
Secure OS Software for Linux
1752806 Members
6049 Online
108789 Solutions
New Discussion юеВ

openssh between linux and HP-UX

 
SOLVED
Go to solution
Marty Metras
Super Advisor

тАО12-16-2002 08:18 AM

тАО12-16-2002 08:18 AM

openssh between linux and HP-UX

I'm trying to set up a Public key so I can use rsync and SSH without it prompting for a password.
I have set up public key on 4 boxes 2 use HP-UX and 2 are Linux.
Here is the problem:
Using ssh to the Linux boxes works fine.
Using ssh to the HP-HX boxes always prompts for the Password.
On all 4 boxes ssh ver. is the same 3.1
The Authorize_keys file has the Public key for each of the boxes.
Is there a compatiable issue going from unix to unix or linux to unix?
What do I need to learn to make this work?
Can you help?
Marty
The only thing that always remain the same are the changes.
0 Kudos
7 REPLIES 7
Kodjo Agbenu
Honored Contributor

тАО12-16-2002 12:16 PM

тАО12-16-2002 12:16 PM

Re: openssh between linux and HP-UX

Hello,

I would suggest you compare the daemon config files /etc/ssh/sshd_config on both Linux and Hp-ux sides.

If you want further investigations, post the /etc/sshd_config file as well as the syntax you are using to connect from one system to the other.

Good luck.

Kodjo
Learn and explain...
0 Kudos
Steven Mertens
Trusted Contributor

тАО12-16-2002 03:02 PM

тАО12-16-2002 03:02 PM

Re: openssh between linux and HP-UX

hi,

Did't you enter an empty
passphrase for your keys ?

rgds.

Steven
0 Kudos
Marty Metras
Super Advisor

тАО12-17-2002 07:44 AM

тАО12-17-2002 07:44 AM

Re: openssh between linux and HP-UX

Hi kodio,
Here is what is in the ssh_config files.
I have change nothing in them. They are still default.

Marty
ssh_config

Unix both boxes "N" and "A" /opt/ssh/etc/sshd_config
Protocol 2
Subsystem sftp /opt/ssh/libexec/sftp-server
All other other lines are remarked out

Linux both boxed "I" and "U" /etc/ssh/ssh_config
SyslogFacility AUTHPRIV
X11Forwarding yes
Subsystem sftp /usr/libexec/openssh/sftp-server
All other other lines are remarked out
The only thing that always remain the same are the changes.
0 Kudos
Marty Metras
Super Advisor

тАО12-17-2002 09:28 AM

тАО12-17-2002 09:28 AM

Re: openssh between linux and HP-UX

Steven,
I did leave the passphrase empty.
Marty
The only thing that always remain the same are the changes.
0 Kudos
Kodjo Agbenu
Honored Contributor

тАО12-18-2002 03:25 PM

тАО12-18-2002 03:25 PM

Re: openssh between linux and HP-UX

Hi Marty,

It seems that hp-ux"s default sshd config does allow only protocol 2, which means dsa or rsa only.

I would suggest that you replace :

Protocol 2

by

Protocol 2,1

in /etc/ssh/sshd_config on your Hp-ux boxes, then restart the daemon.

Please post the result of that tests.

Good luck.

Kodjo
Learn and explain...
0 Kudos
Steven E. Protter
Exalted Contributor

тАО01-21-2003 12:03 PM

тАО01-21-2003 12:03 PM

Solution

Re: openssh between linux and HP-UX

Your best bet is to exchange public keys between the servers user by user.

Attached is a cookbook.

I've gotten it to work though it seems to work more smoothly on the Linux side.

P
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Marty Metras
Super Advisor

тАО01-21-2003 12:18 PM

тАО01-21-2003 12:18 PM

Re: openssh between linux and HP-UX

Thanks Steven,

It looked like the problem I was having with this was a right issue with the user. Reviewing syslog and using the "-v" I found that the user was giving too much rights. After I took (Write) access away from the group all was fine. Coping the PublicKey to the box I wanted to log in to also was a problem to start with.
What I have now and is working fine is as follows.
4 servers with the same users on all 4 with 4 PublicKeys so this user can keep things in sync by using scripts on each server that has information that is shared by the user that dose the syncing. It is almost complete automated.
These computers have to have friends to talk to or they get lonely too.
I could have not have been able to make this work with out the forums help.

I sent a reply before telling what I had done to fix this. I dont see it in the responce change.

Thanks again.
Marty

The only thing that always remain the same are the changes.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.