Proble facing in ssh connection through Unix batch application

From: Udit Narayan Mishra (u.n.mishra_at_gmail.com)
Date: 10/06/05

  • Next message: Des Atkinson: "Windows Server 2003 Security Question"
    Date: Thu, 6 Oct 2005 09:24:54 +0530
    To: secureshell@securityfocus.com
    
    

    Dear Sir,

      I am facing a problem in ssh connection from an Unix batch application.
      We have a Unix batch application which needs to connect to another
      remote machine through ssh. Our application runs on HP-UX 11, and
      has installed Openssh version 1.19 (Protocol 2). The remote machine
    is a Windows NT
      machine installed with F-Secure SSH server for Windows version 5.2.

      What we have noticed that, the application has able to establish the
    pipe, which
      we can observe by "netstat" command. The password prompt is not coming in
      the pipe, instead it is thrown in the terminal. Our application
    automatically gives
      the password, when it finds the password prompt in the channel.

      The trace file is as below:

      C:\TEMP>type log.txt
      10/4/05 10:20:14 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Key exchange failed in local: 'Algorithm
    negotiation failed.'
      10/4/05 10:15:49 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Wrong password given for user 'bscsadm'.
      10/4/05 10:15:48 AM APEventLog Error APZ A2 22202 N/A
       DHHLR04A Process Name: ACS_USA_SyslogAnalyser:351
      Specific problem: 8799
      Perceived Severity: A2
      Probable Cause: ILLEGAL LOGON ATTEMPTS
      Object Class of Reference: APZ
      Object of Reference: LOGFILE/SECURITY-LOGON
      Problem Data: Tue Oct 04 10:15:47 2005 7765 DHHLR04A 529 160
    Security EVENTLOG_AUDIT_FAILURE LOGON32_LOGON_INTERACTIVE bscsadm 2
    Advapi MICROSOFT_AUTHENTICATION_PACKAG
      E_V1_0 DHHLR04A
      Problem Text: SECURITY VIOLATION ATTEMPT

      10/4/05 10:15:47 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Wrong password given for user 'bscsadm'.
      10/4/05 10:15:45 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Wrong password given for user 'bscsadm'.
      10/4/05 10:14:02 AM TelnetD Information None 1290 N/A
       DHHLR04A TelnetD Logon Success
            Remote IP=172.25.20.94
            Remote Host=172.25.20.94
            User Name=bscsadm
            Time=Tue Oct 04 10:14:02 2005
            Telnet PID=879
      10/4/05 10:13:52 AM TelnetD Information None 1292 N/A
       DHHLR04A TelnetServer LOGOFF
            Remote IP=172.25.20.94
            Remote Host=172.25.20.94
            User Name=Administrator
            Time=Tue Oct 04 10:13:52 2005
            Telnet PID=850
      10/4/05 10:13:07 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Wrong password given for user 'bscsadm'.
      10/4/05 10:13:05 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Wrong password given for user 'bscsadm'.
      10/4/05 10:13:03 AM F-Secure SSH Server Warning None 0
       N/A DHHLR04A Wrong password given for user 'bscsadm'.
      10/4/05 10:05:13 AM TelnetD Information None 1290 N/A
       DHHLR04A TelnetD Logon Success
            Remote IP=172.25.20.94
            Remote Host=172.25.20.94
            User Name=Administrator
            Time=Tue Oct 04 10:05:13 2005
            Telnet PID=850

      Our application worked fine previously with ssh protocol 1.

      Please help.

    --
    Regards
    UDIT NARAYAN MISHRA
    Software Engineer
    

  • Next message: Des Atkinson: "Windows Server 2003 Security Question"

    Relevant Pages

    • Re: I do not get ssh. Why is it more secure?
      ... How is this any more secure that plain old telnet? ... And, well, I just don't get the advantage of ssh ... If you put your ssh server on port 12345, it will be free from attacks. ... SSH connections, in the hands of someone who actually knows what they are doing, have the benefit of treating a remote machine as a remote machine. ...
      (comp.os.linux.misc)
    • Re: Remote Execution Through FTP
      ... > I need to send some file from my local machine to a remote machine ... > generation mechanism in SSH. ... then you can script this quite easily using public key's to authenticate. ... Make sure the permissions on the .ssh directory and all the files in it are ...
      (comp.unix.admin)
    • Re: OT: Hard disk mirror with Paragon on USB stick?
      ... at least two pages of intricate command line stuff. ... The password is only used when you want to backup to a remote machine ... via the network, using the ssh protocol. ... (e.g. with linux, ...
      (sci.electronics.design)
    • Re: Is SSH worth it??
      ... > We would be using SSH and SCP. ... SCP for automated scripts. ... > client will not be prompted for a password. ... remote machine, but imho it is better to swap client+server and give ...
      (Security-Basics)
    • Re: I do not get ssh. Why is it more secure?
      ... And, well, I just don't get the advantage of ssh ... Its only mire secure if you think your link can and will be ... and/or VPN networks to routinely encrypt ALL traffic. ... have the benefit of treating a remote machine as a remote machine. ...
      (comp.os.linux.misc)