[WBEL-users] SSH Info

Ed ekg@tricity.wsu.edu
Thu, 12 Aug 2004 17:18:18 -0700 

Kirby Bohling wrote:
> On Thu, Aug 12, 2004 at 04:56:56PM -0700, Ed wrote:
> 
>>Ed Morrison wrote:
>>
>>>Hi Ed,
>>>
>>>I actually did that but it didn't change anything with how ssh works.  I
>>>can still login and use ssh1.
>>
>>Hey Ed,
>>Perversely, sshd will *not* restart if you're logged in using ssh.  You 
>>can however make a shell script with stops sshd, and then restarts it.
>>I'm not sure I'd try this unless I could get someone to restart the 
>>service locally just in case.  Or you could temporarily enable telnet so 
>>you have a "plan B".
>>
> 
> 
> Huh?  Here's a (midly editted) transcript of what I just ran to check what
> you are saying.
> 
> [kbohling@hawk kbohling]$ ssh root@localhost
> root@localhost's password:
> Last login: Thu Aug 12 19:03:38 2004 from localhost.localdomain
> [root@hawk root]# ps auxwwww | grep sshd
> root      1372  0.0  0.4  3656 1552 ?        S    19:02   0:00 /usr/sbin/sshd
> root      1437  1.0  0.7  9440 3032 ?        S    19:03   0:00 sshd: root@pts/3
> 
> [root@hawk root]# netstat -l -n -p | grep 22
> tcp        0      0 0.0.0.0:22              0.0.0.0:* LISTEN      1372/sshd
> 
> [root@hawk root]# service sshd restart
> Stopping sshd:                                             [  OK  ]
> Starting sshd:                                             [  OK  ]
> [root@hawk root]# netstat -l -n -p | grep 22
> tcp        0      0 0.0.0.0:22              0.0.0.0:* LISTEN      1507/sshd
> 
> [root@hawk root]# ps auxwwww | grep sshd
> root      1437  0.2  0.7  9440 3032 ?        S    19:03   0:00 sshd: root@pts/3
> root      1507  0.0  0.4  3664 1552 ?        S    19:04   0:00 /usr/sbin/sshd
> 
> 	Sure, the ssh you are connected to doesn't restart, however, the
> sshd that is listening on port 22 sure does change.  The PID changed
> from 1372 to 1507.  Presumable, if I had changed parameters the new
> sshd wouldn't have access to the old ones.  I might have lost my
> marbles.  My reading of /etc/init.d/sshd also shows that the command
> that's run if you run "service sshd restart" is this:
> 
> killproc $SSHD -TERM
> 
> 	So, I'm pretty sure either, you're wrong, or I don't understand
> what you are saying.
> 
> 	Kirby

Ok, it looks like you're right.  I do remember in the past having 
problems with not being able to restart sshd being logged in through 
ssh, but that's not true for RHEL 3.0.  Sorry for the confustion.

> 
> 
> 
>>remhost$ at now + 1 minute
>>at> service sshd stop
>>at> servies sshd start
>>remhost$ logout
>>localhost$ (wait a minute)
>>localhost$ ssh remhost
>>
>>
>>  Ed
>>
>>
>>
>>>On Thu, 2004-08-12 at 15:24, Ed wrote:
>>>
>>>
>>>>Ed Morrison wrote:
>>>>
>>>>
>>>>>Hi Everyone,
>>>>>
>>>>>I'm looking to tighten down my servers some more and I would like to
>>>>>find a good ssh How to:/step guide for disabling ssh1 and implementing
>>>>>keys.  
>>>>
>>>>in sshd_config:
>>>>Protocol 2
>>>
>>>
>>>Port 22
>>>Protocol 2
>>>#ListenAddress 0.0.0.0
>>>#ListenAddress ::
>>>
>>>
>>>
>>>
>>>>If someone could send some links my way it would be appreciated.
>>>>
>>>>
>>>>>Thanks,
>>>>>Ed
>>>>>
>>>>>_______________________________________________
>>>>>Whitebox-users mailing list
>>>>>Whitebox-users@beau.org
>>>>>http://beau.org/mailman/listinfo/whitebox-users
>>>>
>>>>
>>>_______________________________________________
>>>Whitebox-users mailing list
>>>Whitebox-users@beau.org
>>>http://beau.org/mailman/listinfo/whitebox-users
>>
>>_______________________________________________
>>Whitebox-users mailing list
>>Whitebox-users@beau.org
>>http://beau.org/mailman/listinfo/whitebox-users
>>