[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Simple questions on OpenSSH.

Subject: Re: [cobalt-security] Simple questions on OpenSSH.
From: "David Seaton" <david@xxxxxxxxxxx>
Date: Fri, 28 Jun 2002 02:23:06 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Thanks for your help..
I installed the OpenSSH from PkgMaster
I can't use my desktop software to SSH into the box.
And now the command line will not work. But it did work a minute or so ago.
I did a verbose in the command line.. here's what I have:


OpenSSH_3.2.3p1, SSH protocols 1.5/2.0, OpenSSL 0x0090604f
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 1003 geteuid 1003 anon 1
debug1: Connecting to myplace.com [myIP.myIP.myIP.myIP] port 22.
debug1: temporarily_use_uid: 1003/513 (e=1003)
debug1: restore_uid
debug1: temporarily_use_uid: 1003/513 (e=1003)
debug1: restore_uid
debug1: Connection established.
debug1: identity file /home/villian/.ssh/identity type -1
debug1: identity file /home/villian/.ssh/id_rsa type -1
debug1: identity file /home/villian/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.4p1
debug1: match: OpenSSH_3.4p1 pat OpenSSH*
Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.2.3p1
debug1: SSH2_MSG_KEXINIT sent
Connection closed by myIP.myIP.myIP.myIP
debug1: Calling cleanup 0x41aa2c(0x0)


Again, thanks for your help.
David

----- Original Message -----
From: "Michael Stauber" <cobalt@xxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Thursday, June 27, 2002 8:30 PM
Subject: Re: [cobalt-security] Simple questions on OpenSSH.


Hi David,

> To install OpenSSH-3.4p1-1
> Do I need openssl 0.9.6d installed?

No. Both the PKGmaster.com and Solarspeed.net PKGs were compiled statically
against the most recent OpenSSL and Zlib. Which means that regardless which
version of OpenSSL and Zlib you have aboard, these OpenSSH versions will use
the most recent libraries which they compiled against.

On the RaQs that's the most secure, compatible and hassle free solution.

> What is the difference between the PkgMaster site and SolarSpeed? The
> settings look the same.

Mine has SSH protocol 1 disabled in /etc/ssh/sshd_config by default and uses
exclusively SSH protocol 2 which is considered safer. Taco used to have
protocol 1 enabled for better compatability with older SSH clients.

Aside from that both packages should be pretty similar.

--

Mit freundlichen Grüßen / With best regards

Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer

_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security

References:
- [cobalt-security] Simple questions on OpenSSH.
  - From: David
- Re: [cobalt-security] Simple questions on OpenSSH.
  - From: Michael Stauber

Prev by Date: Re: [cobalt-security] glibc update & other patches
Next by Date: Re: [cobalt-security] adm_error logs - speaking HTTP to HTTPS port
Previous by thread: Re: [cobalt-security] Simple questions on OpenSSH.
Next by thread: Re: [cobalt-security] adm_error logs - speaking HTTP to HTTPS port

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index