TCLUG Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TCLUG:5658] starting ipchains



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Sometime around the 29th of April in 1999, a certain Ben Luey said:

: This breaks ssh. Anyone know what port other than 22 ssh needs to properly
: connect?

tcplogd to the rescue ? I dunno. This is what I get when I try
connecting with it:


jellyd@itsmy:~:> ssh -l jellyd jellyd.org

gives:

Apr 29 16:03:24 itsmy sshd[1990]: log: Connection from 141.219.82.174 port 1023
Apr 29 16:03:24 itsmy tcplogd[1994]: auth connection from itsmy.jellyd.org:1153
Apr 29 16:03:24 itsmy in.identd[1992]: connect from itsmy.jellyd.org
Apr 29 16:03:25 itsmy tcplogd[1991]: ssh connection from root@itsmy.jellyd.org:1023
Apr 29 16:03:30 itsmy sshd[1990]: log: Password authentication for jellyd accepted.



and

jmbecker@colossus:~:> ssh -l jellyd jellyd.org

gives:

Apr 29 16:06:21 itsmy tcplogd[2512]: ssh connection from colossus.csl.mtu.edu:1021
Apr 29 16:06:52 itsmy sshd[2513]: log: RSA authentication for jellyd accepted.

I know colossus doesn't have identd installed, but it appears
to only ask for an auth response when it authenticates with passwords
instead of RSA keys.

Come to think of it, should /usr/local/bin/ssh1 be suid root ?
That doesn't seem right for some reason. Or maybe it needs to
be to access secure memory or something like that (like gpg
complains about).

- --
[----------------------------------------------------------------------]
| Joshua Becker                    - aka -                      JellyD |
| email: jellyd@jellyd.org                          IRC: EFnet, DALnet |
[----------------------------------------------------------------------]

-----BEGIN PGP SIGNATURE-----
Version: GNUPG v0.4.3 (GNU/Linux)
Comment: For info finger gcrypt@ftp.guug.de

iD8DBQE3KL0mcmkpI69BOLwRAs1RAJ9QDJPQu0B20I6JAYBvJsFeihK/ZgCglkjC
DHcsyyW4y+WE4L1NopGOyn8=
=jBIm
-----END PGP SIGNATURE-----