LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 07-21-2003, 06:45 AM   #1
juanb
Member
 
Registered: May 2002
Posts: 401

Rep: Reputation: 30
Unhappy problem with ssh.


Hi !!

I am trying to connect to a red hat 8 server that is on a DMZ .
I recieve a connection refused error.
whan I am sitting on that server and I telnet to local host on port 22 the server answeres. I am passing throw one Firewall but on the FW logs I see that all the connections in ssh to that server are accepted.

what to do ?

thanks
 
Old 07-21-2003, 10:03 AM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
You might need to open up the server to outside ssh requests (telneting to localhost uses the loopback interface). So make sure the server allows port 22 connections on the ext. interface. Check /etc/sysconfig/iptables and make sure you have something that resembles this:

-A INPUT -p tcp --dport 22 -j ACCEPT

Also depending on how you have the server configured, you might need to add the ip address of the host your trying to connect FROM to /etc/hosts.allow
 
Old 07-21-2003, 10:46 AM   #3
myutopia
LQ Newbie
 
Registered: Aug 2001
Location: Manchester
Distribution: RedHat 9.0, FreeBSD
Posts: 24

Rep: Reputation: 15
if your able to bring up a console on that server then try running sshd in debug mode on a seperate port ie

sshd -d -d -d -p 2020

then ssh to the server using
ssh -v -p 2020 ipaddress


note the output from both consoles somewhere it should give a clue to why it fails
 
Old 07-22-2003, 02:27 AM   #4
juanb
Member
 
Registered: May 2002
Posts: 401

Original Poster
Rep: Reputation: 30
o.k. now I am recieving a response from the server:
(I AM TRYING TO CONNECT FROM A LINUX RED HAT):
[juan@juanlin juan]$ ssh 212.143.234.6
The authenticity of host '212.143.234.6 (212.143.234.6)' can't be established.
RSA key fingerprint is a2:a5:f4:f6:0d:f0:67:33:6f:16:34:37:7d:4a:aa:d2.
Are you sure you want to continue connecting (yes/no)? y
Please type 'yes' or 'no': yes
Warning: Permanently added '212.143.234.6' (RSA) to the list of known hosts.
juan@212.143.234.6's password:

WHAT PASSWOED HE'S ASKING FOR ?
i TRIED THE ROOT PASSWORD AND HE REFUSE TO THAT PASSWORD. WHAN I TRY TO CONNECT TO THE MACHINE FROM A WIN 2000 WITH PUTTY CLIENT EVERYTHING WORKS.
WHY IN LINUX EVERYTHING IS SO COMPLICATED ?
 
Old 07-22-2003, 06:59 AM   #5
xuniLUser
LQ Newbie
 
Registered: Jul 2003
Location: $HOME
Distribution: RedHat, Knoppix
Posts: 6

Rep: Reputation: 0
Hi Juanb

The password requested will be the password of a local user on the box you are trying to access.
If mickey mouse had an acount such as mmouse, then add the following

-l mmouse

to the ssh command. When asked, mmouse can then type the password of that account.
 
Old 07-22-2003, 07:12 AM   #6
juanb
Member
 
Registered: May 2002
Posts: 401

Original Poster
Rep: Reputation: 30
thank u very much !!
 
Old 07-23-2003, 03:11 AM   #7
xuniLUser
LQ Newbie
 
Registered: Jul 2003
Location: $HOME
Distribution: RedHat, Knoppix
Posts: 6

Rep: Reputation: 0
Glad it helped.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
ssh-agent, ssh-add and ssh-keygen AND CVS raylpc Linux - General 2 11-19-2008 02:50 AM
ssh problem Mystified Linux - Networking 5 01-23-2005 06:17 PM
problem with ssh ito Linux - Networking 6 08-25-2003 04:21 PM
ssh problem juanb Linux - Security 6 08-21-2003 02:58 PM
ssh and X problem mazzo Linux - Networking 7 08-14-2003 11:59 AM


All times are GMT -5. The time now is 09:57 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration