Connection from Win98 to RH9 through putty (SSH)
 

I don't understand why I cannot connect from Win 98 to Red Hat 9 using putty(ssh).

According to nmap on RH box:
[root@localhost sbin]# nmap 192.168.1.100
Starting nmap V. 3.00 ( www.insecure.org/nmap/ )
Interesting ports on (192.168.1.100):
(The 1593 ports scanned but not shown below are in state: closed)
Port State Service
22/tcp open ssh
79/tcp open finger
80/tcp open http
111/tcp open sunrpc
139/tcp open netbios-ssn
443/tcp open https
3306/tcp open mysql
6000/tcp open X11

SSH port # 22 is open.
Linux IP: inet addr:192.168.1.100

Both Linux and Windows boxes are under LinkSys router.
Windows Ethernat Ip is: 192.168.1.101.

So From Windows 98 I'm trying to connect using Putty. I entered the IP address: 192.168.1.100 and choosed Port 22 for connection.
After 1 min, I received error message that the connection can not be establishe

Why I cannot connect to Linux box? Any help will be appreciate.

Thanks

check:

/var/log/secure
/var/log/messages

if you iptraf, run this as root:

iptraf -s eth0

err, can u ping your linux box from your windows pc? vice versa?

Try running /etc/initd/sshd restart on the Redhat box and then try to ssh in

What it prompt wrong messages ?

I restarted, still can't connect.

[root@localhost init.d]# ./sshd stop
Stopping sshd: [ OK ]
[root@localhost init.d]# ./sshd start
Starting sshd: [ OK ]
[root@localhost init.d]# ./sshd status
sshd (pid 30585) is running...
[root@localhost init.d]#

Error Message:
" Unknown Network Error"

Lower your security level on the Redhat box

Yes. I can ping

Just for giggles try telneting to port 22 from the windows box (telnet hostname 22).

If you are running nmap from the linux computer then that doesn't mean that it'll accept something from a different computer. Still sounds like a firewall problem to me. Run nmap from the machine you are sshing to (or just telnet to that port)

You will need something like
iptables -A INPUT -p ALL -i eth1 -s 192.168.0.0/24 -j ACCEPT
in your firewall script (with whatever IP's your using for your LAN).

Or just /etc/init.d/iptables stop and see if it works.

I changed the security level to no firewall and can login now. But is it a good idea... Now it is much easier to hack the box..

Any advises ?
Thanks

Now you need to setup a good firewall.

www.netfilter.org

or you can download something like firestarter (look up on google) and have it make you a firewall. Just keep whatever you need open open.

Seabass

Don't waste your time w/ those individual firewalls. Install OpenBSD on an old box as your network's firewall and let the most secure operating system in the world take care of you

iptables will work just fine

iptables will work just fine but I can't help pimping OpenBSD. It's designed w/ security in mind from the ground up and is far easier to get running IMHO. All you have to do is read the OpenBSD FAQ and the man pages and you will be up and running. Linux is great for the desktop and you can secure it w/ some effort but OpenBSD is built w/ security in mind w/ everything turned off by default. So you only turn on what you need. Also, pf is FAR easier to use than iptables.

I know...I'm just pimpin on RH.

When it comes to security openbsd is best