- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: adnormal behaviour of ssh
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-30-2005 05:06 PM
03-30-2005 05:06 PM
adnormal behaviour of ssh
I installed ssh in one of my N-class server running HP-UX 11.00 with the following in sshd_config file:
:
#PermitRootLogin yes
PermitRootLogin no
:
Correct me if I'm wrong that root can not login directly? But the fact is reverse.
How to overcome this problem?
PS: Other server with the following UX version has no problem:
(1) K380 (11.00)
(2) 2nd N-class (11.11)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-30-2005 05:49 PM
03-30-2005 05:49 PM
Re: adnormal behaviour of ssh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-30-2005 05:52 PM
03-30-2005 05:52 PM
Re: adnormal behaviour of ssh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-30-2005 08:21 PM
03-30-2005 08:21 PM
Re: adnormal behaviour of ssh
With the command /sbin/init.d/secsh stop, the daemon did not stopped though the command prompt return sshd was stopped .
I used kill -9 to the sshd process and I started it again to see whether I can use /sbin/init.d/secsh stop method to stop the daemon.
Before I run the stop command after the daemon started, I tried out the ssh client to connect using root account. This time it failed.
Very weird, is there a bug? I downloaded from www.software.hp.com, A.03.91.002 HP-UX Secure Shell.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-31-2005 12:35 AM
03-31-2005 12:35 AM
Re: adnormal behaviour of ssh
Look also in /sbin/init.d for *ssh* file (should be only one) and also in /sbin/rc:
find /sbin -type f | grep -e ssh -e secsh
There should not be and ssh files in /sbin, only secsh.
Make sure that /var/run/sshd.pid has a valid PID for the sshd process, then try killing it by hand. If that works, use the secsh script to start it again (/sbin/init.d/secsh start). The trace the script:
sh -x /sbin/init.d/secsh stop
Bill Hassell, sysadmin
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-01-2005 03:47 AM
04-01-2005 03:47 AM
Re: adnormal behaviour of ssh
PermitRootLogin no
prevents root from logging in.
I think I read that you were finally able to verify that.
The stop scripts aren't always perfect. They are intended to be able to stop the daemon in a fairly well-known and well-behaved state.
I've seen many "bugs" in the start/stop scripts over the years, but it's always easy to catch a problem when it actually happens rather than in the development stage;>) Processes can hang up and be unkillable, pid files (if used by the particular start/stop subsystem) can be missing or have wrong values in them -- in short, various and sundry things can go wrong.
In general, a simple /init.d/xxx start followed by a /init.d/xxx stop will almost always work.
In this case, the /init.d/secsh is doing a very meager job of really trying to kill sshd:
kill `cat $WHAT_PID`
.
So, if the PID file didn't exist, or had wrong value, it wouldn't work.
In the past these scripts usually tried to do a 'ps' to determine if the relevant daemon was running and then kill it.
Also, if the 'kill' didn't work, the stop also wouldn't be complete. IMHO, it probably should try a 'kill -9' if the plain 'kill' didn't work
hth
bv
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-13-2005 04:12 PM
04-13-2005 04:12 PM
Re: adnormal behaviour of ssh
I finally compiled OpenSSH on HP-UX 11.00 and it is working as expected.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-13-2005 04:36 PM
04-13-2005 04:36 PM
Re: adnormal behaviour of ssh
I want to only allow RSA keys authentication for direct root login. The documented way to do this is set the following 3 keywords:
PermitRootLogin without-password
RSAAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys
By doing the above, sshd should only allow root login using RSA key authentication. You cannot login as root using password authentication. I failed to get this working on the HP Secure Shell.
I then compiled OpenSSH and it works as expected.