I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network). errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed? -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
On 4/20/23 21:07, Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
My guess would be there is an additional ~/.ssh/config file with host/port pairs in it in the user directory? -- David C. Rankin, J.D.,P.E.
On Thursday, April 20, 2023 9:07:50 PM CDT Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
The ssh server is listening on 2 ports? What does ss -tuln show?
* Mark Petersen via openSUSE Users <users@lists.opensuse.org> [04-20-23 22:31]:
On Thursday, April 20, 2023 9:07:50 PM CDT Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
The ssh server is listening on 2 ports?
What does ss -tuln show?
root and <user> show same ports. -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
On Fri, Apr 21, 2023 at 5:08 AM Patrick Shanahan <paka@opensuse.org> wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
You could start with explaining what "machine uses port 22 for <user>" means. You probably did something that you describe in this way but you forgot to tell what you did.
* Andrei Borzenkov <arvidjaar@gmail.com> [04-21-23 02:57]:
On Fri, Apr 21, 2023 at 5:08 AM Patrick Shanahan <paka@opensuse.org> wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
You could start with explaining what "machine uses port 22 for <user>" means. You probably did something that you describe in this way but you forgot to tell what you did.
attempting to ssh to my server from remote using ssh -XC <user>@<my.server> fails and (-vvv) show no access to port 22 ssh -XC <root>@<my.server> succeeds using high port ssh -XCp<high-port> <user>@<my.server> also succeeds other boxes with same ssh config(s) work w/o specifying ssh port tks, -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
On 2023-04-21 13:15, Patrick Shanahan wrote:
* Andrei Borzenkov <arvidjaar@gmail.com> [04-21-23 02:57]:
On Fri, Apr 21, 2023 at 5:08 AM Patrick Shanahan <paka@opensuse.org> wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
You could start with explaining what "machine uses port 22 for <user>" means. You probably did something that you describe in this way but you forgot to tell what you did.
attempting to ssh to my server from remote using ssh -XC <user>@<my.server> fails and (-vvv) show no access to port 22
ssh -XC <root>@<my.server> succeeds using high port
ssh -XCp<high-port> <user>@<my.server> also succeeds
other boxes with same ssh config(s) work w/o specifying ssh port
Did you check the router? -- Cheers / Saludos, Carlos E. R. (from 15.4 x86_64 at Telcontar)
On Fri, Apr 21, 2023 at 2:16 PM Patrick Shanahan <paka@opensuse.org> wrote:
* Andrei Borzenkov <arvidjaar@gmail.com> [04-21-23 02:57]:
On Fri, Apr 21, 2023 at 5:08 AM Patrick Shanahan <paka@opensuse.org> wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
You could start with explaining what "machine uses port 22 for <user>" means. You probably did something that you describe in this way but you forgot to tell what you did.
attempting to ssh to my server from remote using ssh -XC <user>@<my.server> fails and (-vvv) show no access to port 22
ssh -XC <root>@<my.server> succeeds using high port
So provide full output of "ssh -vvv ..." in both cases. Are those two commands run from the same user session on the same host?
ssh -XCp<high-port> <user>@<my.server> also succeeds
This would be helpful for comparison.
other boxes with same ssh config(s) work w/o specifying ssh port
ssh involves two sides - client and server. It is absolutely unclear what "other boxes" refers to.
* Andrei Borzenkov <arvidjaar@gmail.com> [04-21-23 07:27]:
On Fri, Apr 21, 2023 at 2:16 PM Patrick Shanahan <paka@opensuse.org> wrote:
* Andrei Borzenkov <arvidjaar@gmail.com> [04-21-23 02:57]:
On Fri, Apr 21, 2023 at 5:08 AM Patrick Shanahan <paka@opensuseorg> wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
You could start with explaining what "machine uses port 22 for <user>" means. You probably did something that you describe in this way but you forgot to tell what you did.
attempting to ssh to my server from remote using ssh -XC <user>@<my.server> fails and (-vvv) show no access to port 22
ssh -XC <root>@<my.server> succeeds using high port
So provide full output of "ssh -vvv ..." in both cases. Are those two commands run from the same user session on the same host?
yes, and additional user sessions with same result
ssh -XCp<high-port> <user>@<my.server> also succeeds
This would be helpful for comparison.
other boxes with same ssh config(s) work w/o specifying ssh port
ssh involves two sides - client and server. It is absolutely unclear what "other boxes" refers to.
other tumbleweed boxes with same config. problem is permissions, no read perms for <user> for ssh[d]_config. tks -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
It sounds like you might have a separate config for <user>. ~/.ssh/config will override any system-wide config /etc/ssh/ssh_config. -- Per Jessen, Zürich (6.1°C) Member, openSUSE Heroes (2016 - present) We're hiring - https://en.opensuse.org/openSUSE:Heroes
* Per Jessen <per@opensuse.org> [04-21-23 03:18]:
Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
It sounds like you might have a separate config for <user>. ~/.ssh/config will override any system-wide config /etc/ssh/ssh_config.
there is none :( tks, -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
Patrick Shanahan wrote:
* Per Jessen <per@opensuse.org> [04-21-23 03:18]:
Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
It sounds like you might have a separate config for <user>. ~/.ssh/config will override any system-wide config /etc/ssh/ssh_config.
there is none :(
Hmm, so a user does not get the information from /etc/ssh/ssh_config but root does. Perhaps it is not readable by a user? -- Per Jessen, Zürich (12.2°C) Member, openSUSE Heroes (2016 - present) We're hiring - https://en.opensuse.org/openSUSE:Heroes
* Per Jessen <per@opensuse.org> [04-21-23 07:30]:
Patrick Shanahan wrote:
* Per Jessen <per@opensuse.org> [04-21-23 03:18]:
Patrick Shanahan wrote:
I change ssh port 22 to a high port on all my installs but have one box that respects the assignment for root but not for <user>. I change both ssh.config and sshd.config so that including the port assignment is not normally required (within local network).
errant machine respects the port assignment for rute but uses port 22 for <user>. What have I missed?
It sounds like you might have a separate config for <user>. ~/.ssh/config will override any system-wide config /etc/ssh/ssh_config.
there is none :(
Hmm, so a user does not get the information from /etc/ssh/ssh_config but root does. Perhaps it is not readable by a user?
bingo, ssh[d]_config did not have read perms for <user> solved and tks. -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet oftc
participants (6)
-
Andrei Borzenkov -
Carlos E. R. -
David C. Rankin -
Mark Petersen -
Patrick Shanahan -
Per Jessen