LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-25-2007, 10:30 PM   #16
stormpunk
LQ Newbie
 
Registered: Mar 2004
Distribution: windows 7
Posts: 21

Rep: Reputation: 2

Quote:
Originally Posted by slimm609 View Post
and that should work fine

user1@local_1 to user1@remote_1 should work fine. but user1@local_1 to user2@remote_1 will not. same as user1@local_1 to root@remote_1 will not work.

Let's clarify all this with real names, or at least as real as I care for.
Are you telling me that this below snippet can't happen?
Code:
[stormpunk@bishop ~]$ ssh root@192.168.2.201
Last login: Tue Sep 25 16:06:14 2007 from 192.168.2.252
[root@space2 ~]# exit
logout
Connection to 192.168.2.201 closed.
[stormpunk@bishop ~]$ ssh stormpunk@192.168.2.201
Last login: Tue Sep 25 16:07:47 2007 from 192.168.2.252
[stormpunk@space2 ~]$
 
Old 09-26-2007, 06:13 AM   #17
slimm609
Member
 
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 430

Rep: Reputation: 67
do a sshd -d -d -d and paste it. then also do an md5 on both key files.
 
Old 09-26-2007, 06:24 AM   #18
matthewg42
Senior Member
 
Registered: Oct 2003
Location: UK
Distribution: Kubuntu 12.10 (using awesome wm though)
Posts: 3,530

Rep: Reputation: 67
Please dis-regard this post.
 
Old 09-26-2007, 09:47 AM   #19
stormpunk
LQ Newbie
 
Registered: Mar 2004
Distribution: windows 7
Posts: 21

Rep: Reputation: 2
Code:
[root@space2 ~]# /usr/local/sbin/sshd -d -d -d
debug2: load_server_config: filename /usr/local/etc/sshd_config
debug2: load_server_config: done config len = 172
debug2: parse_server_config: config /usr/local/etc/sshd_config len 172
debug3: /usr/local/etc/sshd_config:21 setting Protocol 2
debug3: /usr/local/etc/sshd_config:110 setting Subsystem sftp   /usr/local/libexec/sftp-server
debug1: sshd version OpenSSH_4.7p1
debug3: Not a RSA1 key file /usr/local/etc/ssh_host_rsa_key.
debug1: read PEM private key done: type RSA
debug1: private host key: #0 type 1 RSA
debug3: Not a RSA1 key file /usr/local/etc/ssh_host_dsa_key.
debug1: read PEM private key done: type DSA
debug1: private host key: #1 type 2 DSA
debug1: rexec_argv[0]='/usr/local/sbin/sshd'
debug1: rexec_argv[1]='-d'
debug1: rexec_argv[2]='-d'
debug1: rexec_argv[3]='-d'
debug2: fd 3 setting O_NONBLOCK
debug1: Bind to port 22 on ::.
Bind to port 22 on :: failed: Address already in use.
debug2: fd 3 setting O_NONBLOCK
debug1: Bind to port 22 on 0.0.0.0.
Bind to port 22 on 0.0.0.0 failed: Address already in use.
Cannot bind any address.
Code:
[root@space2 ~]# md5sum /home/stormpunk/.ssh/authorized_keys /root/.ssh/authorized_keys
af5bc8180a60fa8d29a4beeabcd734dc  /home/stormpunk/.ssh/authorized_keys
af5bc8180a60fa8d29a4beeabcd734dc  /root/.ssh/authorized_keys
I don't know how much more proof you'd like to have. This is possible. You can clearly see the files are the same.
This is running on OpenSSH_4.7p1, OpenSSL 0.9.8e 23 Feb 2007. I have other versions in action which produce the same results.

I've done it for years like this. Lots of different OpenSSL and OpenSSH versions. It works. Before you start requesting more evidence, maybe you should figure out what you've been doing wrong all this time.
 
Old 09-26-2007, 01:11 PM   #20
slimm609
Member
 
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 430

Rep: Reputation: 67
Well i guess i am mistaken but even the ssh documents say that it will not work

From a security aspect you would never want to do what you are doing because now someone would not have to get root only your user account then use your keys for root to the other machine
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
ssh without password hk_linux Linux - General 13 11-11-2010 05:20 PM
need help with no password ssh and ssh-agent hedpe Linux - Networking 3 02-08-2007 09:49 PM
SSH without password Ephracis Linux - Security 4 02-25-2005 03:30 PM
ssh password ssudhi Linux - Newbie 6 05-13-2004 10:30 PM
SSH without password Kocil Linux - Networking 6 12-16-2003 03:59 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 10:40 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration