Re: [Leaf-user] Dachstein-CD RC4: Cannot ssh to firewall ???

Sun, 11 Nov 2001 20:15:46 -0800 


Matt Schalit wrote:
> 
> "Michael D. Schleif" wrote:
> >
> > Jeff Newmiller wrote:
> > >
> > > On Sun, 11 Nov 2001, Michael D. Schleif wrote:
> > >
> > > > OK, I've moved to openssh with RC4.  Everything else in my setup is
> > > > constant with RC3, except this ssh change.
> > > >
> > > > I can ssh *out* of the firewall to other systems.
> > > >
> > > > I have generated the keys:
> > > >
> > > >       /etc/ssh/ssh_host_key
> > > >       /etc/ssh/ssh_host_key.pub
> > > >       /etc/ssh/ssh_host_rsa_key
> > > >       /etc/ssh/ssh_host_rsa_key.pub
> > > >       /etc/ssh/ssh_host_dsa_key
> > > >       /etc/ssh/ssh_host_dsa_key.pub
> > > >
> > > > However, I *CANNOT* access the firewall from anywhere:
> > > >
> > > >       Loki:/home/mds/# ssh -l root trout
> > > >       Secure connection to trout refused.
> > > >
> > > > What do you think?
> > >
> > > Check /etc/hosts.allow... you should have a line like
> > >
> > >   sshd: 192.168.1.
> > >
> > > or wherever you are logging in from.
> >
> > No, that doesn't work.

Yes, Jeff, ``doesn't work'' means that it did not work to resolve my
problem -- sorry to wax confused ;<

> > Also, I want to ssh into this firewall from anywhere . .  .
> 
>   ps | grep sshd
> 
> Start the sshd daemon.  Connection refused often means
> that there was no daemon running.

This was it !!!!

The old version of sshd-1 was running as standalone server -- commented
*out* in /etc/inetd.conf.

This new version of /etc/init.d/sshd has this prior to the typical
start/stop case statement:

        # Comment out and edit /etc/inetd.conf to run as a stand alone server
        echo "Secure Shell server via inetd: sshd"
        exit 0

Of course, once I comment *OUT* the echo and exit 0 statements, it works
exactly as expected.

Whew!

Now, I ask you all, is it more secure to run this from inetd or
standalone ???

-- 

Best Regards,

mds
mds resource
888.250.3987

Dare to fix things before they break . . .

Our capacity for understanding is inversely proportional to how much we
think we know.  The more I know, the more I know I don't know . . .

_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user

Reply via email to