HPE Community
Operating System - HP-UX
1829125 Members
2161 Online
109986 Solutions
New Discussion

SSH issue!!

 
Amit Manna_6
Regular Advisor

‎09-14-2005 07:45 PM

‎09-14-2005 07:45 PM

SSH issue!!

From a HP server when we do ssh (hostname) to another server I get the followingf error:

/opt/ssh/bin/ssh tldnms
Permission denied.

Can anybody suggest a workaround for the same.


0 Kudos
Reply
13 REPLIES 13
RAC_1
Honored Contributor

‎09-14-2005 07:47 PM

‎09-14-2005 07:47 PM

Re: SSH issue!!

It is coming from another server-tldnms. Check on that server. May be you are not allowed to log onto it. Check syslog, dmesg on that server.
There is no substitute to HARDWORK
0 Kudos
Reply
RAC_1
Honored Contributor

‎09-14-2005 07:50 PM

‎09-14-2005 07:50 PM

Re: SSH issue!!

Also ssh -vvv tldnms will give more messages for anlyzing yourm problem.
There is no substitute to HARDWORK
0 Kudos
Reply
Arunvijai_4
Honored Contributor

‎09-14-2005 07:51 PM

‎09-14-2005 07:51 PM

Re: SSH issue!!

Are you executing this command as a root or normal user ?
"A ship in the harbor is safe, but that is not what ships are built for"
0 Kudos
Reply
Arunvijai_4
Honored Contributor

‎09-14-2005 07:53 PM

‎09-14-2005 07:53 PM

Re: SSH issue!!

Check this thread, http://forums2.itrc.hp.com/service/forums/questionanswer.do?threadId=776938
"A ship in the harbor is safe, but that is not what ships are built for"
0 Kudos
Reply
VEL_1
Valued Contributor

‎09-14-2005 07:58 PM

‎09-14-2005 07:58 PM

Re: SSH issue!!


check the ~/.ssh/known_hosts for an existing entry for the conflicting box
and check that your firewall settings allow connections on port 22
0 Kudos
Reply
VEL_1
Valued Contributor

‎09-14-2005 08:11 PM

‎09-14-2005 08:11 PM

Re: SSH issue!!


Check the permission of ssh config files. An dalso check the /bin directory. It should be 755.

Permission denied may be anywhere along the path, not the file itself. so look at /bin and / also.
0 Kudos
Reply
Amit Manna_6
Regular Advisor

‎09-14-2005 08:26 PM

‎09-14-2005 08:26 PM

Re: SSH issue!!

I am trying from normal user.

ssh -v tldnms
SSH Version 1.2.27 [hppa1.0-hp-hpux10.20], protocol version 1.5.
Standard version. Does not use RSAREF.
michael: ssh_connect: getuid 0 geteuid 0 anon 0
michael: Connecting to tldnms [10.220.6.17] port 22.
michael: Allocated local port 1023.
michael: Connection established.
michael: Remote protocol version 1.5, remote software version 1.2.27
michael: Waiting for server public key.
michael: Received server public key (768 bits) and host key (1024 bits).
michael: Host 'tldnms' is known and matches the host key.
michael: Initializing random; seed file /root/.ssh/random_seed
michael: Encryption type: idea
michael: Sent encrypted session key.
michael: Installing crc compensation attack detector.
michael: Received encrypted confirmation.
michael: Remote: Server does not permit empty password login.
michael: No agent.
michael: Doing password authentication.
root@tldnms's password:
Permission denied.


I am getting the above error.

Please advice.
0 Kudos
Reply
RAC_1
Honored Contributor

‎09-14-2005 08:34 PM

‎09-14-2005 08:34 PM

Re: SSH issue!!

ssh -vvv would have been better. Looks as if root is not allowed to login directly on the server. If you want to login in as another user, do ssh user@tldnms
There is no substitute to HARDWORK
0 Kudos
Reply
Orhan Biyiklioglu
Respected Contributor

‎09-14-2005 08:36 PM

‎09-14-2005 08:36 PM

Re: SSH issue!!

Are you sure that you input the correct root password for the machine tldnms. Can you login to this machine by any other means (telnet, ftp, etc.) using this password. Maybe the root password has expired or the root account is disabled.
If you can login to tldnms than check if there are any messages in the syslog

grep sshd /var/adm/syslog/syslog.log
0 Kudos
Reply
Orhan Biyiklioglu
Respected Contributor

‎09-14-2005 08:40 PM

‎09-14-2005 08:40 PM

Re: SSH issue!!

One more point:
If you can login to tldnms than check the sshd config file /opt/ssh/etc/sshd_config whether there is a line

PermitRootLogin no

if so sshd will not allow you to login as root.
Default is PermitRootLogin yes
0 Kudos
Reply
Bob_Vance
Esteemed Contributor

‎09-18-2005 02:09 AM

‎09-18-2005 02:09 AM

Re: SSH issue!!

First of all, you said that you're "trying from normal user".
Are you sure?
The output you show is asking for *root* password.

Is the remote system also HPUX ?


When you get:

Permission denied, please try again.
bobv@pine3's password:
Permission denied, please try again.

that can mean that the remote account has been disabled, at least on HPUX.
Or, if you simply enter the wrong password!!

Do you have keys configured and exchanged for the account, or are you just relying on passwords?

Normally, without keys and with "ChallengeResponseAuthentication yes" (the default), your first prompt is
password:

You will get the user@host prompt after failing on the simple "password:" prompt. But, by this time the account has been disabled (on HPUX trusted).

Do you have "ChallengeResponseAuthentication no" on the remote system?

Are you really trying to use a null password?


bv
"The lyf so short, the craft so long to lerne." - Chaucer
0 Kudos
Reply
Raj D.
Honored Contributor

‎09-18-2005 03:25 AM

‎09-18-2005 03:25 AM

Re: SSH issue!!


Hi Amit ,

It seems that the remote system you are trying to login is not correctly configured ssh. check up the configuration agian.

Cheers,
Raj.
" If u think u can , If u think u cannot , - You are always Right . "
0 Kudos
Reply
Raj D.
Honored Contributor

‎09-18-2005 03:29 AM

‎09-18-2005 03:29 AM

Re: SSH issue!!

Amit,

Also Check up in remote host:

# ps -ef | grep sshd
# lsof /opt/ssh/sbin/sshd

also check there should not be /etc/nologin , else it will not allow to connect.

And provide some more info if still not able to connect..

hth,
Raj.
" If u think u can , If u think u cannot , - You are always Right . "
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.