HPE Community
Operating System - HP-UX
1833744 Members
2925 Online
110063 Solutions
New Discussion

Implementing secure shell

 
SOLVED
Go to solution
KRS_1
Frequent Advisor

‎05-20-2005 05:37 AM

‎05-20-2005 05:37 AM

Implementing secure shell

Hi all,

I would like to implement secure shell.

let me know all steps related to secure shell.

Thanks and regards
Raj
0 Kudos
7 REPLIES 7
Robert Bennett_3
Respected Contributor

‎05-20-2005 05:53 AM

‎05-20-2005 05:53 AM

Solution

Re: Implementing secure shell

Install secure shell on 2 servers ( ex. HOME and REMOTE)

a. Edit the /opt/ssh/etc/ssh_config file, change the following keyword to the example.

Protocol 2,1

b. Edit the /opt/ssh/etc/sshd_config file, change the following keywords or uncomment the keywords as listed below.

Protocol 2,1
HostKey /opt/ssh/etc/ssh_host_key
HostKey /opt/ssh/etc/ssh_host_rsa_key
HostKey /opt/ssh/etc/ssh_host_dsa_key
PermitRootLogin yes
PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys
RhostsAuthentication no
IgnoreRhosts yes
PermitEmptyPasswords no
X11Forwarding no

c. Establish the root trust from HOME to the root account REMOTE.

on REMOTE
cd /roots/.ssh
scp HOME:/roots/.ssh/id_rsa.pub ./id_rsa.pub.HOME
cat id_rsa.pub.HOME >> authorized_keys

d. Test the trusted login ability of root on HOME

root@HOME# ssh REMOTE

if the login was successful without a password the configuration is complete.

This should get you going to set up ssh for root between 2 servers. just repeat the procedure for any other REMOTE server.
"All there is to thinking is seeing something noticeable which makes you see something you weren't noticing which makes you see something that isn't even visible." - Norman Maclean
0 Kudos
Volker Borowski
Honored Contributor

‎05-20-2005 06:00 AM

‎05-20-2005 06:00 AM

Re: Implementing secure shell

... and if you need ssh-client on windows, use putty !
Volker
0 Kudos
Rouchon_2
Occasional Advisor

‎05-20-2005 06:26 AM

‎05-20-2005 06:26 AM

Re: Implementing secure shell

if you only need secure shell and not trusted systems and rlogin without password. there is only 2 steps.

- Install latest ssh package
- disable unsecure shell (telnet)

Enjoy.

I also recommend to install with ssh tcpwrapper to be able to refuse connection based on IP of requestor.

Permit Root login is not recommended just secure shell with a normal user and su in your shell. Because root is a well known account name. this will disallow bruteforce Cracking.
0 Kudos
Sanjay_6
Honored Contributor

‎05-20-2005 06:59 AM

‎05-20-2005 06:59 AM

Re: Implementing secure shell

Hi Raj,

Try this link,

http://software.hp.com/portal/swdepot/displayProductInfo.do?productNumber=T1471AA

Check out the release notes link.

Hope this helps.

Regds
0 Kudos
Nguyen Anh Tien
Honored Contributor

‎05-20-2005 03:22 PM

‎05-20-2005 03:22 PM

Re: Implementing secure shell

docs is available at
http://docs.hp.com/en/T1471-90008/index.html
installation at:
http://docs.hp.com/en/T1471-90008/ch01s07.html
HP is simple
0 Kudos
Sยภเl Kย๓คг
Respected Contributor

‎05-20-2005 07:20 PM

‎05-20-2005 07:20 PM

Re: Implementing secure shell

You need to install the Secure Shell application, either from the application CD or download the bundle from site. This won't be installed by default on an HP UX installation.
Under /etc/opt/ssh you can find the configuration files and do the appropriate modifications to tune for your requirements.

After modifications u need to kill /opt/ssh/sbin/sshd process and restart it to reflect the changes..

Regards,
SK
Your imagination is the preview of your life's coming attractions
0 Kudos
KRS_1
Frequent Advisor

‎06-11-2005 01:24 PM

‎06-11-2005 01:24 PM

Re: Implementing secure shell

Thank you guys
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.