Connection from Win98 to RH9 through putty (SSH)
I don't understand why I cannot connect from Win 98 to Red Hat 9 using putty(ssh).
According to nmap on RH box: [root@localhost sbin]# nmap 192.168.1.100 Starting nmap V. 3.00 ( www.insecure.org/nmap/ ) Interesting ports on (192.168.1.100): (The 1593 ports scanned but not shown below are in state: closed) Port State Service 22/tcp open ssh 79/tcp open finger 80/tcp open http 111/tcp open sunrpc 139/tcp open netbios-ssn 443/tcp open https 3306/tcp open mysql 6000/tcp open X11 SSH port # 22 is open. Linux IP: inet addr:192.168.1.100 Both Linux and Windows boxes are under LinkSys router. Windows Ethernat Ip is: 192.168.1.101. So From Windows 98 I'm trying to connect using Putty. I entered the IP address: 192.168.1.100 and choosed Port 22 for connection. After 1 min, I received error message that the connection can not be establishe Why I cannot connect to Linux box? Any help will be appreciate. Thanks |
check:
/var/log/secure /var/log/messages if you iptraf, run this as root: iptraf -s eth0 err, can u ping your linux box from your windows pc? vice versa? |
Try running /etc/initd/sshd restart on the Redhat box and then try to ssh in
|
What it prompt wrong messages ?
|
Quote:
I restarted, still can't connect. [root@localhost init.d]# ./sshd stop Stopping sshd: [ OK ] [root@localhost init.d]# ./sshd start Starting sshd: [ OK ] [root@localhost init.d]# ./sshd status sshd (pid 30585) is running... [root@localhost init.d]# |
Quote:
" Unknown Network Error" |
Lower your security level on the Redhat box
|
Quote:
|
Just for giggles try telneting to port 22 from the windows box (telnet hostname 22).
If you are running nmap from the linux computer then that doesn't mean that it'll accept something from a different computer. Still sounds like a firewall problem to me. Run nmap from the machine you are sshing to (or just telnet to that port) You will need something like iptables -A INPUT -p ALL -i eth1 -s 192.168.0.0/24 -j ACCEPT in your firewall script (with whatever IP's your using for your LAN). Or just /etc/init.d/iptables stop and see if it works. |
I changed the security level to no firewall and can login now. But is it a good idea... Now it is much easier to hack the box..
Any advises ? Thanks |
Now you need to setup a good firewall.
www.netfilter.org or you can download something like firestarter (look up on google) and have it make you a firewall. Just keep whatever you need open open. Seabass |
Don't waste your time w/ those individual firewalls. Install OpenBSD on an old box as your network's firewall and let the most secure operating system in the world take care of you
|
iptables will work just fine
|
iptables will work just fine but I can't help pimping OpenBSD. It's designed w/ security in mind from the ground up and is far easier to get running IMHO. All you have to do is read the OpenBSD FAQ and the man pages and you will be up and running. Linux is great for the desktop and you can secure it w/ some effort but OpenBSD is built w/ security in mind w/ everything turned off by default. So you only turn on what you need. Also, pf is FAR easier to use than iptables.
|
I know...I'm just pimpin on RH.
When it comes to security openbsd is best |
All times are GMT -5. The time now is 04:18 PM. |