Wednesday, October 9, 2013

sshd rejects some users login

www.unixbabuforum.inI'm experiencing some problems with some users wich can't login using ssh. 
They try to log on to an AIX 5.3 TL07 with ssh version 5.0.0.5302. 
The method is by means of "putty" and the same config wich they could do login before this incident. 
I have checked the configuration of ssh, and nothing has been changed, but now (three days ago) they noticed an error dialog like: 
"Server unecpectedly closed network connection" 
www.unixbabuforum.inI used to have a same problem, drove me nuts... the solution? 
check /tmp - if your permission for /tmp are wrong, only root will be 
able to login... 
Of course, your problem may be different, but give it a try. 
Bellow are correct permission for /tmp: 

root@co01XXXXXX:/:# ls -al |grep tmp 
drwxrwxrwt 8 root system 4096 Feb 16 15:52 tmp 
root@co01XXXXXX:/:# 

www.unixbabuforum.inProblems like this do not suddenly appear for no 
reason. 
One of the biggest problems is many people having root access which allows 
them 
to make changes without asking or telling anyone. No one but the sys admin 
should 
ever have root access and even the sys admin should have to su - to become 
root. 
Perhaps a reinstall of ssl will resolve this.
www.unixbabuforum.in1. Change the TL to 5.3.0.7. 

2. Commit the new SSL and SSH versions installed. 

3. Recreate the system public rsa key. 

4. Exchange the public RSA keys between the hosts who needed. 



0 comments:

Post a Comment

 
Design by BABU | Dedicated to grandfather | welcome to BABU-UNIX-FORUM