HPE Community
Operating System - HP-UX
1820636 Members
1867 Online
109626 Solutions
New Discussion юеВ

ssh connectivity

 
Jay McDougal
New Member

тАО06-06-2003 10:14 AM

тАО06-06-2003 10:14 AM

ssh connectivity

When trying to establish an SSH connection between two HP-UX servers over a VLAN I am unsucessfull. But, I am sucessfull at getting a connection between two HP-UX servers on the same subnet.
All servers are using "OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090603f"

I have tested the VLAN and confirmed that port 22 is open in both directions.

There are no inetd services running because I am on a secure network. I cannot ping or telnet accoss the VLAN.

Here is ssh -v results:

$ ssh 208.41.144.151 -l oracle8 -v
HP-UX port of OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090603f
debug1: Reading configuration data /opt/ssh/etc/ssh_config
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 202 geteuid 0 anon 1
debug1: Connecting to 208.41.144.151 [208.41.144.151] port 22.
debug1: temporarily_use_uid: 202/20 (e=0)
debug1: restore_uid
debug1: temporarily_use_uid: 202/20 (e=0)
debug1: restore_uid
debug1: Connection established.
debug1: read PEM private key done: type DSA
debug1: read PEM private key done: type RSA
debug1: identity file /home/jrmcdoug/.ssh/id_rsa type -1
debug1: identity file /home/jrmcdoug/.ssh/id_dsa type -1
ssh_exchange_identification: Connection closed by remote host
debug1: Calling cleanup 0x400117aa(0x0)

0 Kudos
Reply
4 REPLIES 4
Ken Penland_1
Trusted Contributor

тАО06-06-2003 10:30 AM

тАО06-06-2003 10:30 AM

Re: ssh connectivity

It may be a stupid suggestion, but most of the time for me it turns out to be the problem...it looks like it is just quitting when it tries to authenticate...so you are sure the account is not locked on the remote system?
'
0 Kudos
Reply
Sridhar Bhaskarla
Honored Contributor

тАО06-06-2003 10:48 AM

тАО06-06-2003 10:48 AM

Re: ssh connectivity

Hi,

You will get more information on the sshd server side. Run it in debug mode using "sshd -d" and then attempt to connect and observe the output.

It could most probably be permission issues on .ssh or the user's home directory. Also check if the user account is locked or needs to change the password.

Another possibility is to make sure you have /etc/hosts.allow on the remote server and have the entries for sshd. If your sshd was compiled with tcp_wrappers, then you will need to have this file.

sshd: ALL : ALLOW

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Reply
Chris Vail
Honored Contributor

тАО06-06-2003 02:01 PM

тАО06-06-2003 02:01 PM

Re: ssh connectivity

You really need to have the users' home directory to 755. NOTHING ELSE WILL WORK. Also, the authorized_keys files HAS to be 644. Don't do much else until you verify this. If even a single permission bit is off, ssh won't work.

Attached is my usual document about installing and using the secure utilities.
0 Kudos
Reply
Zeev Schultz
Honored Contributor

тАО06-07-2003 01:44 AM

тАО06-07-2003 01:44 AM

Re: ssh connectivity

What kind of switch do you use?It can be that
your switch isn't supporting SSH-2 (default for OpenSSH & hp ssh product).Also there is
a newer SSH from hp (based on 3.5p1).Read here:http://docs.hp.com/hpux/onlinedocs/T1471-90006/T1471-90006.html
Mostly browse the FAQ.I'd also check /etc/host.allow / deny if there's something in them (since SSH from HP is compiled with TCP Wrappers support).

Zeev
So computers don't think yet. At least not chess computers. - Seymour Cray
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.