Re: Client connect without host service running?

• Next message: Nico Kadel-Garcia: "Re: versioning mismatch -- WTF!!!"
• Previous message: Nico Kadel-Garcia: "Re: chrooted ssh works, sftp doesn't"
• In reply to: John Pokinpo: "Client connect without host service running?"
• Next in thread: John Pokinpo: "Re: Client connect without host service running?"
• Reply: John Pokinpo: "Re: Client connect without host service running?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: sjl@debtemp.lib.monash.edu.au (Stuart Lamble)
Date: 8 Feb 2002 05:15:08 GMT

In article <a3vlgh$ngv$1@slb4.atl.mindspring.net>, John Pokinpo wrote:
>I stopped the openssh service on the host and tried logging on from the
>client. To my complete surprise, i was let in. Next, I disabled the service
>on the host and deleted the host's public and private keys - afterwards, the
>client logged in fine.
>
>Questions:
>Isn't openssh service responsible for listening to port for an incoming
>client connection?

Yes. Incoming clients cannot connect via ssh unless openssh is running.
Try doing an "lsof -i" (or "netstat -a") to check whether there is any
process listening to port 22 (TCP).

>Shouldn't client have alerted me that host keys no longer match?

Again, yes.

Are you sure that the client is connecting to the right host? Are you
sure that the client's connecting using the ssh protocol? Are you sure
that the openssh service has been terminated, and that the keys have
changed? (IIRC, openssh caches the keys in memory... I could be wrong,
though.)

netstat -a (or, preferably [in my opinion], lsof -i) is your friend
in tracking down the root causes of these problems.

-- 
"You didn't slay the dragon?!"
"It's on my to-do list, now come on!"
  -- Shrek.

• Next message: Nico Kadel-Garcia: "Re: versioning mismatch -- WTF!!!"
• Previous message: Nico Kadel-Garcia: "Re: chrooted ssh works, sftp doesn't"
• In reply to: John Pokinpo: "Client connect without host service running?"
• Next in thread: John Pokinpo: "Re: Client connect without host service running?"
• Reply: John Pokinpo: "Re: Client connect without host service running?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Client connect without host service running? ... Incoming clients cannot connect via ssh unless openssh is running. ... openssh caches the keys in memory... ... I went to the ssh client and compared the host ... (comp.security.ssh) Re: How to configure dual SSH keys? ... client authentication keys normally used by the root account on the SSH ... client host. ... on the client, not the server, while the latter is on the server but ... (comp.security.ssh) Re: host-based ssh authentication (no password) not working ... help needed ... > host public keys for the server should be known to ... keys - no user home directories should be involved at ... I am simply sharing host keys so that all users ... on CLIENT can login to SERVER with no passwords ... ... (freebsd-questions) Client connect without host service running? ... I am currently trying out Openssh 3.0.2 as host and ssh.com's Secure Shell ... Client 3.1.0 / 237 just to get a feel before implementing it for our office. ... I stopped the openssh service on the host and tried logging on from the ... (comp.security.ssh) Re: Problem with using same dsa hostkeys on 2 different machines, one of which is backup ... >I generate the host dsa key pair on one computer. ... >When I connect to the active from a client computer, ... >since the host keys are known. ... the backup takes over. ... (comp.security.ssh)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint