Below I've quoted my own comment, but since we solved the problem was I
felt I should let everybody know what it was.
The standard install of ssh makes the user execute bit SUID like this:
-rwsr-xr-x 1 root root 182588 Sep 26 10:14 /usr/bin/ssh1
The problem is that kerberos authentication is turned off in ssh-1.2.27
when this bit is set SUID, so doing a chmod u-s ssh1 solved the problem.
It seems that everybody was executing this in a shell script and never saw
the warning message that ssh spits out.
We also have ssh compiled with TCP/IP wrappers and nobody had it in their
/etc/hosts.allow file.
When we ran RH5.1 we didn't have the above problems, but we were using
ssh-1.2.26 with the kerberos patch and probably no TCP/IP wrappers.
So I guess the moral to the story is to know what you are installing
before you pull your hair out.
Carl
On 13-Oct-99 Carl J. Nobile wrote:
> Humm, I work for AppliedTheory.com where we use kerberos, ssh, and
> RedHat
> 6.0 on all our Intel workstations platforms. To date we have not been
> able
> to get sshd1 to work on RH6.0, the client works fine. This is why I
> recently joined this list.
>
> If I figure it out I will post my results to the list.
>
> Carl
>
------------------------------------------------------------------------
E-Mail: Carl J. Nobile <[EMAIL PROTECTED]>
Date: 25-Oct-99 Phone: 315-453-2912 Ex. 5336
Time: 11:19:42 Fax: 315-453-3052
Software Engineering Group
This message was sent by XFMail AppliedTheory Corp.
------------------------------------------------------------------------
