Help answer threads with 0 replies.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 01-22-2010, 05:12 PM   #1
LQ Newbie
Registered: Jan 2010
Posts: 4

Rep: Reputation: 0
I think i found a bug in Ssh server

Hi folks, first of all i am sorry about my English...

I think i found a bug in Ssh daemon, or maybe it is not a bug and i am wrong, but i need some help to see the light.

When i connect from a client machine to a server machine via Nautilus (ssh://guest@remote-ip-server:22/home/guest). In the server machine, the who command do no show this guest user logged in.

You will need 2 machines running Debian Lenny (stable) amd64 with Gnome to reproduce this bug, probably you don't.

At client machine with Gnome and Nautilus:
You write this url in Nautilus: ssh://guest@remote-ip-server:22/home/guest
Will prompt for password 2 times (i don't know why)
Now you can navigate remotely via Nautilus...

At the remote server machine:
server:/# who
root     tty1         2010-01-22 21:53
server:/# netstat -atn   
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State 
tcp        0      0      ESTABLISHED
tcp        0      0      ESTABLISHED
As you see, you can't see guest user logged in. Maybe it is not a bug, but i am afraid it can be a security issue.

I am totally sure it is not a bug in Ssh because Nautilus do no open an interactive shell but i need some help how to see this type of connection on the server side.


Last edited by guarapo; 01-22-2010 at 05:24 PM.
Click here to see the post LQ members have rated as the most helpful post in this thread.
Old 01-22-2010, 05:22 PM   #2
Senior Member
Registered: Dec 2008
Location: Louisville, OH
Distribution: Debian, CentOS, Slackware, RHEL, Gentoo
Posts: 1,833

Rep: Reputation: 167Reputation: 167

Does it list it as having logged in twice?
Old 01-22-2010, 06:25 PM   #3
LQ Newbie
Registered: Jan 2010
Location: San Diego, California
Distribution: Debian, RHEL, SuSE
Posts: 6

Rep: Reputation: 2
That is because Nautilus is creating an SFTP connection not an SSH session with that method.
2 members found this post helpful.
Old 01-22-2010, 06:45 PM   #4
Registered: Sep 2009
Location: Russia
Distribution: Gentoo, LFS
Posts: 399
Blog Entries: 71

Rep: Reputation: 65
rkdavies is totally right here, sftp connections are not shown in "who" because they actually don't start shell session. That is not debian-specific as well.

Hi and welcome to, rkdavies!
Old 01-23-2010, 08:38 AM   #5
LQ Newbie
Registered: Jan 2010
Posts: 4

Original Poster
Rep: Reputation: 0
Thank you guys for your fast replies.

Yes, and sftp connection do no open an interactive shell... so no user is logged in.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
May have found a bug in 64 current? corbintechboy Slackware 11 07-11-2009 09:42 AM
Ssh Bug Server Problem Devanshu Kumar Singh Linux - Newbie 4 01-16-2008 01:19 AM
APF / BFD bug found digimon Linux - Security 4 11-20-2006 12:27 AM
Distro reviews bug found thorn168 LQ Suggestions & Feedback 4 03-01-2006 09:07 AM
I found a bug in Kernel 2.4.3-20 fatal Linux - General 2 06-09-2001 03:59 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 12:33 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration