- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- ssh question
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 04:52 AM
04-11-2002 04:52 AM
I installed ssh 3.1p1 on ver 11.0 but how do I replace telnet with ssh?
What do I need to do ?
How do I make my users use ssh and sft instead of telnet and ftp?
Thanks in advance, and points will be assigned to every answer.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 05:08 AM
04-11-2002 05:08 AM
Re: ssh question
A few things to note for compiling SSH on HP-UX 11.00. To ensure that the make compilation works, you have to add a parameter to ./configure as follows:
# ./configure --host=hppa2.0-hp-hpux11.00
For running sftp on Unix, also make sure that /usr/local/bin is in your PATH variable so that it knows where to search for the other required SSH binaries.
It doesn't answer all your questions but it can help.
grt, Emiel
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 05:09 AM
04-11-2002 05:09 AM
Re: ssh question
Find some links here :
http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x8464c5ea0230d411ade80090279cd0f9,00.html
Clemens
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 05:13 AM
04-11-2002 05:13 AM
SolutionYou can disable access bu telnet and ftp by editing /etc/inetd.conf and put the entries for telnet and ftp in comment:
ftp stream tcp nowait root /usr/lbin/ftpd ftpd -l
telnet stream tcp nowait root /usr/lbin/telnetd telnetd
Now restart the inetdaemon:
/sbin/init.d/inetd stop
/sbin/init.d/inetd start
The users are now forced to use the ssh connection instead of telnet.
Kurt
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 05:31 AM
04-11-2002 05:31 AM
Re: ssh question
First verify ssh, sftp, and scp work for you then your users. Note that the client machines will have to have an ssh package.
Once your users have ssh working, disable telnet and ftp in /etc/inetd.conf and tell inetd to re-read it's configuration with "inetd -c".
Also, if you are "replacing" telnet for security reasons, you should also replace rlogin. It too is disabled in /etc/inetd.conf.
Darrell
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 05:31 AM
04-11-2002 05:31 AM
Re: ssh question
Although some people will be able to answer your question specifically, you might try http://www.onsight.com/faq/ssh/ssh-faq.html , http://www.openssh.com/ for the FAQ and http://www.snailbook.com/ for "SSH: The Secure Shell The Definitive Guide", http://wks.uts.ohio-state.edu/sysadm_course/html/sysadm-558.html ,
http://wks.uts.ohio-state.edu/sysadm_course/html/sysadm-1.html#HEADING1-37 .
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2002 05:49 AM
04-11-2002 05:49 AM
Re: ssh question
1. Broadcast to your users that telnet/rlogin will be disabled by keeping a message in motd or /etc/issue. Give them sufficient time.
2. Do not disable telnet at once. Instead use /var/adm/inetd.sec file to restrict telnet/login/shell and rexec to only few systems preferably to your system from where you should be able to login. This will not allow users to telnet. You can use "telnet deny all" followed by few clients.
3. Let users start using ssh and be comfortable with key management etc., If you get into any problems with ssh, you can always telnet to the box from your system.
4. Keep startup/shutdown scripts so that sshd will comeup automatically when you reboot the system.
5. Disable the abovesaid services from inetd.conf once you feel comfortable with it.
-Sri