Security Basics mailing list archives

RE: SSH Setup

From: Neil Fryer <nfryer () marimba com>
Date: Thu, 26 Feb 2004 06:37:52 -0800

Hi Prasad,

Can you send me a copy of your sshd_conf file?
And can you please also send me the output if you try and ssh into the
machine in question, from the machine running the client? i.e.. ssh -v
user@host

I'll have a look through that, and see if I can spot anything, also what OS
and version is this running on?

Kind Regards,
Neil Fryer

-----Original Message-----
From: athawale () buffalo edu [mailto:athawale () buffalo edu]
Sent: Wednesday, February 25, 2004 4:03 PM
To: Neil Fryer; 'Prasad Athawale'; security-basics () securityfocus com
Subject: RE: SSH Setup


Hi!

The output is not therewhen i logon locallyto the machine - but if i do a 
local ssh then i do get the same output. I'm completely lost as to why this 
is happening.Letme know if you need me to find out something specific and 
then i can let you know.

Thanks,
Prasad

--On Wednesday, February 25, 2004 3:46 AM -0800 Neil Fryer 
<nfryer () marimba com> wrote:

Hi,

It seems that something is going on with you ~/.profile or /etc/profile,
when you log into the machine on the console, do you get the same output?
I wouldn't say that this was related to SSHD at all.
Also, if you have questions on SSHD, type them out and mail them to me and
I'll help you where I can.

Neil

-----Original Message-----
From: Prasad Athawale [mailto:athawale () cse buffalo edu]
Sent: Tuesday, February 24, 2004 1:40 AM
To: security-basics () securityfocus com
Subject: SSH Setup


Hi!

I've got a machine running sshd, and which on login displays the
following text in the shell ( The shell is - GNU bash, version
2.05b.0(1)-release (i386-redhat-linux-gnu) :

    -bash: export: `/usr/java/j2sdk1.4.2_02': not a valid identifier
    -bash: export: `/ur/j2ee/directory/location': not a valid identifier
    -bash: /usr/tomcat/jakarta-tomcat: No such file or directory
    declare -x APACHE_HOME="/usr/local/apache2/bin/httpd"
    declare -x CATALINA_HOME=""
    declare -x DISPLAY="localhost:10.0"
    declare -x G_BROKEN_FILENAMES="1"
    declare -x HISTSIZE="1000"
    declare -x HOME="/home/username"
    declare -x HOSTNAME="username"
    declare -x INPUTRC="/etc/inputrc"
    declare -x J2EE_HOME
    declare -x JAVA_HOME="/usr/java/j2sdk1.4.2_02"
    declare -x LANG="en_US.UTF-8"
    declare -x LESSOPEN="|/usr/bin/lesspipe.sh %s"
    declare -x LOGNAME="username"
    declare -x

LS_COLORS="no=00:fi=00:di=00;34:ln=00;36:pi=40;33:so=00;35:bd=40;33;01:cd
=40
;33;01:or=01;05;37;41:mi=01;05;37;41:ex=00;32:*.cmd=00;32:*.exe=00;32:*.c
om=
00;32:*.btm=00;32:*.bat=00;32:*.sh=00;32:*.csh=00;32:*.tar=00;31:*.tgz=00
;31
:*.arj=00;31:*.taz=00;31:*.lzh=00;31:*.zip=00;31:*.z=00;31:*.Z=00;31:*.gz
=00
;31:*.bz2=00;31:*.bz=00;31:*.tz=00;31:*.rpm=00;31:*.cpio=00;31:*.jpg=00;3
5:*
.gif=00;35:*.bmp=00;35:*.xbm=00;35:*.xpm=00;35:*.png=00;35:*.tif=00;35:"
    declare -x MAIL="/var/spool/mail/username"
    declare -x OLDPWD
    declare -x

PATH="/usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin:/usr/java/j2sdk1.4.2_02
/bi n"
    declare -x PWD="/home/username"
    declare -x SHELL="/bin/bash"
    declare -x SHLVL="1"
    declare -x SSH_ASKPASS="/usr/libexec/openssh/gnome-ssh-askpass"
    declare -x SSH_CLIENT="Client_IP Client_Port 22"
    declare -x SSH_CONNECTION="Client_IP Client_Port Server_IP 22"
    declare -x SSH_TTY="/dev/pts/3"
    declare -x TERM="xterm"
    declare -x USER="username"

Could someone point out what is wrong with my setup ? I've tried the
ssh-config files - and currently only thing I have there is X11
Forwarding enabled.

Also since we are on the topic of SSH - what would be your suggestions
for the 'correct' configuration of sshd ?

I'm on Redhat 9, with OpenSSH_3.5p1, SSH protocols 1.5/2.0, OpenSSL
0x0090701f (output of ssh -V)

Thanks,
Prasad



-------------------------------------------------------------------------
-- Free trial: Astaro Security Linux -- firewall with Spam/Virus
Protection

Protect your network with the comprehensive security solution that
integrates six applications for ease of use and lower TCO.

Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.

Download 30-day evaluation at:
http://www.securityfocus.com/sponsor/Astaro_security-basics_040219
-------------------------------------------------------------------------
---




---------------------------------------------------------------------
Prasad S. Athawale,
Graduate Student,
Dept of Computer Science,
University at Buffalo,
NY-14214
USA
---------------------------------------------------------------------

"Whatever you do make sure the probability is one"

---------------------------------------------------------------------------
----------------------------------------------------------------------------

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

SSH Setup Prasad Athawale (Feb 24)
- <Possible follow-ups>
- RE: SSH Setup Neil Fryer (Feb 25)
  - RE: SSH Setup athawale (Feb 25)
- RE: SSH Setup Neil Fryer (Feb 26)