1833787 Members
2457 Online
110063 Solutions
New Discussion

HP OpenSSH

 
blue_sky5429
Occasional Contributor

HP OpenSSH

Hi
Is it possible to configure a non admin user(local user) to transfer file using SFTP on a HP SIM 4.1 server(member server).I am getting th following error message

C:\>ssh -l userftp 192.168.0.10
userftp@192.168.0.10's password:
Last login: Mon Mar 20 22:18:09 2006 from 2ksrv1.test.lab
C:\Program Files\OpenSSH\bin\switch.exe: *** can't create title mutex 'Global\cygwin1S3-2003-11-04 16:46.title_mutex.0', Win32 error 5
Connection to 192.168.0.10 closed.

can any one help me.
7 REPLIES 7
Steven E. Protter
Exalted Contributor

Re: HP OpenSSH

Shalom,

This error is on the windows client.

It may be triggered by the sshd daemon not being run on the host 192.168.0.10

I'd make sure the software is installed correctly in windows as a first step.

sftp transfers are normally initiated with the command:

sftp

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
John Dvorchak
Honored Contributor

Re: HP OpenSSH

I would try to use sftp instead of ssh in the command line. I repectfuly disagree with Steven because in my mind if sshd wasn't running on 192.168.0.10 you would not have gotten the "Last login" message, the session whould have just failed with a "rejected" type error.

That being said and hopefully I didn't offend anyone, try using sftp -l userftp 192.168.0.10 and post the output if it fails again.

If it has wheels or a skirt, you can't afford it.
blue_sky5429
Occasional Contributor

Re: HP OpenSSH

I can login and transfer files using a Admin ID.If i remove the ID from the admin group the next moment it gives connection closed error message.Kindly find the attachment for better understading.It has both output with and without admin privilage for that ID.Even i gave full controll and owerner for the ID on OPENSSH folder.But everything getting fails.

I belive HP customized such configuration by restricting non admin IDs.

Thanks for your kind response.
Robert Fritz
Regular Advisor

Re: HP OpenSSH

It looks like you're going from windows to windows. If I recall correctly, the SSH server that shipped with SIM (on windows) isn't for general use. (note, refer to support for the official word) That's because the shipped sshd is cygwin-based. Cygwin has a shared memory model that fails to isolate processes memory and resources. To avoid giving users a false-sense of security, I believe they disabled the server for non-root access (to avoid comingling admin/non-admin). That said, you can always use your own sshd (configured on a different port).

Does that make sense?
-Robert
Those Who Would Sacrifice Liberty for Security Deserve Neither." - Benjamin Franklin
Michael Stabnow
New Member

Re: HP OpenSSH

I believe Robert's comments are correct
about the 'sshd' shipped with HP-SIM.

Another thing to consider is that, in a
general Cygwin Windows installation,
the 'userftp' account is usually not configured with a login shell. It's
login shell is usually set to
'/usr/bin/false' to immediately exit, with
exit code 1, if someone attempts to log in
using that account (as a security
measure). The 'userftp' account is only
meant to be used with "sftp".

-- Mike
Adam Garsha
Valued Contributor

Re: HP OpenSSH

I am trying to set up a windows box to allow ssh interactive connection using an domain user who has local admin priviledges on the host in question.

I can connect fine when I use password authentication (from a linux client), but when I try to put a key in .ssh in the home directory for the users, I get that mutex error.

When I use a key with a local admin user (instead of a domain user with local admin privs), the key works fine. Any ideas?

I would use regular cygwin, but won't get past change control. This package, since distributed by HP, can be installed without too much redtape.
Adam Garsha
Valued Contributor

Re: HP OpenSSH

I am not a windows guy, but I guess since I am only authenticating with the sshd service running on that windows box (when I use a key for that domain user), there is no way for the host to check me against the domain?

shrug. I wish windows would just include a supported openssh service in services-for-unix.