RE: SSH Setup

athawale_at_buffalo.edu
Date: 02/25/04

  • Next message: Neil Fryer: "RE: SSH Setup" 
    Date: Wed, 25 Feb 2004 11:02:31 -0500
To: Neil Fryer <nfryer@marimba.com>, 'Prasad Athawale' <athawale@cse.Buffalo.EDU>, security-basics@securityfocus.com

    Hi!

    The output is not therewhen i logon locallyto the machine - but if i do a
    local ssh then i do get the same output. I'm completely lost as to why this
    is happening.Letme know if you need me to find out something specific and
    then i can let you know.

    Thanks,
    Prasad

    --On Wednesday, February 25, 2004 3:46 AM -0800 Neil Fryer
    <nfryer@marimba.com> wrote:

    > Hi,
    >
    > It seems that something is going on with you ~/.profile or /etc/profile,
    > when you log into the machine on the console, do you get the same output?
    > I wouldn't say that this was related to SSHD at all.
    > Also, if you have questions on SSHD, type them out and mail them to me and
    > I'll help you where I can.
    >
    > Neil
    >
    > -----Original Message-----
    > From: Prasad Athawale [mailto:athawale@cse.buffalo.edu]
    > Sent: Tuesday, February 24, 2004 1:40 AM
    > To: security-basics@securityfocus.com
    > Subject: SSH Setup
    >
    >
    > Hi!
    >
    > I've got a machine running sshd, and which on login displays the
    > following text in the shell ( The shell is - GNU bash, version
    > 2.05b.0(1)-release (i386-redhat-linux-gnu) :
    >
    > -bash: export: `/usr/java/j2sdk1.4.2_02': not a valid identifier
    > -bash: export: `/ur/j2ee/directory/location': not a valid identifier
    > -bash: /usr/tomcat/jakarta-tomcat: No such file or directory
    > declare -x APACHE_HOME="/usr/local/apache2/bin/httpd"
    > declare -x CATALINA_HOME=""
    > declare -x DISPLAY="localhost:10.0"
    > declare -x G_BROKEN_FILENAMES="1"
    > declare -x HISTSIZE="1000"
    > declare -x HOME="/home/username"
    > declare -x HOSTNAME="username"
    > declare -x INPUTRC="/etc/inputrc"
    > declare -x J2EE_HOME
    > declare -x JAVA_HOME="/usr/java/j2sdk1.4.2_02"
    > declare -x LANG="en_US.UTF-8"
    > declare -x LESSOPEN="|/usr/bin/lesspipe.sh %s"
    > declare -x LOGNAME="username"
    > declare -x
    >
    > LS_COLORS="no=00:fi=00:di=00;34:ln=00;36:pi=40;33:so=00;35:bd=40;33;01:cd
    > =40
    > ;33;01:or=01;05;37;41:mi=01;05;37;41:ex=00;32:*.cmd=00;32:*.exe=00;32:*.c
    > om=
    > 00;32:*.btm=00;32:*.bat=00;32:*.sh=00;32:*.csh=00;32:*.tar=00;31:*.tgz=00
    > ;31
    > :*.arj=00;31:*.taz=00;31:*.lzh=00;31:*.zip=00;31:*.z=00;31:*.Z=00;31:*.gz
    > =00
    > ;31:*.bz2=00;31:*.bz=00;31:*.tz=00;31:*.rpm=00;31:*.cpio=00;31:*.jpg=00;3
    > 5:*
    > .gif=00;35:*.bmp=00;35:*.xbm=00;35:*.xpm=00;35:*.png=00;35:*.tif=00;35:"
    > declare -x MAIL="/var/spool/mail/username"
    > declare -x OLDPWD
    > declare -x
    >
    > PATH="/usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin:/usr/java/j2sdk1.4.2_02
    > /bi n"
    > declare -x PWD="/home/username"
    > declare -x SHELL="/bin/bash"
    > declare -x SHLVL="1"
    > declare -x SSH_ASKPASS="/usr/libexec/openssh/gnome-ssh-askpass"
    > declare -x SSH_CLIENT="Client_IP Client_Port 22"
    > declare -x SSH_CONNECTION="Client_IP Client_Port Server_IP 22"
    > declare -x SSH_TTY="/dev/pts/3"
    > declare -x TERM="xterm"
    > declare -x USER="username"
    >
    > Could someone point out what is wrong with my setup ? I've tried the
    > ssh-config files - and currently only thing I have there is X11
    > Forwarding enabled.
    >
    > Also since we are on the topic of SSH - what would be your suggestions
    > for the 'correct' configuration of sshd ?
    >
    > I'm on Redhat 9, with OpenSSH_3.5p1, SSH protocols 1.5/2.0, OpenSSL
    > 0x0090701f (output of ssh -V)
    >
    > Thanks,
    > Prasad
    >
    >
    >
    > -------------------------------------------------------------------------
    > -- Free trial: Astaro Security Linux -- firewall with Spam/Virus
    > Protection
    >
    > Protect your network with the comprehensive security solution that
    > integrates six applications for ease of use and lower TCO.
    >
    > Firewall - Virus protection - Spam protection - URL blocking - VPN
    > - Wireless security.
    >
    > Download 30-day evaluation at:
    > http://www.securityfocus.com/sponsor/Astaro_security-basics_040219
    > -------------------------------------------------------------------------
    > ---

    ---------------------------------------------------------------------
    Prasad S. Athawale,
    Graduate Student,
    Dept of Computer Science,
    University at Buffalo,
    NY-14214
    USA
    ---------------------------------------------------------------------

    "Whatever you do make sure the probability is one"

    ---------------------------------------------------------------------------
    ----------------------------------------------------------------------------

  • Next message: Neil Fryer: "RE: SSH Setup"

    Relevant Pages

    • RE: SSH Setup
      ... And can you please also send me the output if you try and ssh into the ... > I wouldn't say that this was related to SSHD at all. ... > Subject: SSH Setup ... > declare -x OLDPWD ...
      (Security-Basics)
    • Re: ssh with tcp_wrappers!! contd/-
      ... Thanks a lot for such a huge response, of course typing mistake, i was using DenyHost not DenyGhost; as suggested by david and others i did this, ... Login, as root, to my Linux system containing the sshd server. ... i am not willing to compile openssh package is there any way out via rpm installation. ... Then try to ssh to localhost. ...
      (RedHat)
    • Re: use ipchains to block all ports > 60,000
      ... else going on here except sshd which allows me to log in and monitor the ... Telnet not running but here's the ouput of ssh -V and sshd -V ... OK, ran that from an external box and it showed open ports 22, 80, plus ... My ISP looked for evidence of massive scans emanating from my ip address ...
      (comp.os.linux.security)
    • remote administration of upgrades
      ... server that I administer runs FreeBSD 4.8, ... have ssh access to ... don't want to fubar sshd and then not be able to ... kill only the ...
      (freebsd-questions)
    • Re: Is OpenSSH 3.5p1 secure?
      ... Do not allow root access over ssh. ... Do allow access over ssh for one and only one user. ... Here are a couple specific recommendations for you that you may wish ... Make sure your Protocol 2 RSA or DSA sshd keys are at the very ...
      (comp.security.ssh)