OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: jon (jonsteelrat.dyndns.org)
Date: Fri Mar 23 2001 - 18:41:18 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    On Fri, Mar 23, 2001 at 04:52:32PM -0700, Vincent Danen wrote:

    > > On my Mandrake 7.1 base server, I installed the 7.2 versions with
    > > rpm -Fvh openssh*
    > >
    > > // I don't think you need these
    > > pam-devel-0.72-13.1mdk
    > > pam-doc-0.72-13.1mdk
    >
    > You don't need them, but if you're going to use the 7.2 rpms or the
    > corporate server rpms for openssh, you should use their versions of
    > pam as well (corporate and 7.2+ use system-auth, which 7.1 and older
    > do not)... that being said, 7.1 openssh packages will still work on
    > the newer distribs (should, but untested), but not the other way
    > around (ie. 7.2 openssh with 7.1 pam).
    >
    > > // these are my packages
    > > pam-0.72-13.1mdk
    > > openssh-askpass-2.5.2p2-1.1mdk
    > > openssh-server-2.5.2p2-1.1mdk
    > > openssh-2.5.2p2-1.1mdk
    > > openssh-askpass-gnome-2.5.2p2-1.1mdk
    > > openssh-clients-2.5.2p2-1.1mdk
    > >
    > > I also could not log in anymore via ssh. I looked to see what was
    > > updated and found in /etc/ssh
    > > -rw-r----- 1 root root 1042 Jan 26 21:34 ssh_config
    > > -rw-r--r-- 1 root root 1200 Mar 22 15:26 ssh_config.rpmnew
    > > -rw------- 1 root root 1364 Jan 26 21:45 sshd_config
    > > -rw------- 1 root root 1689 Mar 22 15:26 sshd_config.rpmnew
    > >
    > > After looking at diff's between my version and the rpmnew versions,
    > > I determined that I could safely update the files, like...
    > > -rw-r----- 1 root root 1200 Mar 23 00:20 ssh_config
    > > -rw-r----- 1 root root 1042 Jan 26 21:34 ssh_config.old
    > > -rw-r--r-- 1 root root 1200 Mar 22 15:26 ssh_config.rpmnew
    > > -rw------- 1 root root 1689 Mar 23 00:20 sshd_config
    > > -rw------- 1 root root 1364 Jan 26 21:45 sshd_config.old
    > > -rw------- 1 root root 1689 Mar 22 15:26 sshd_config.rpmnew
    > >
    > > # service sshd restart
    > > And now everything is fine :)
    >
    > Ok, then yes, you should use the *.rpmnew config files... much has
    > changed in the configs that may affect things.
    >
    > You also want to force a restart so that it can generate RSA keys for
    > your server also.

    Well, if there are any other suggestions I'd like to hear those as well.

    I looked in /etc/ssh and there were no .rpmnew files, only the new versions
    of files the updated ssh packages had put there. I already had the right
    config files.

    Just to be sure, I removed all of my SSH RPMS, and then deleted by hand the
    /etc/ssh directory. Then I installed again all of the new SSH packages.

    I still cannot login via ssh. I can login via telnet, so I know it's not
    my password!

    Any ideas on where else to look?

    -j