[opensuse] SSH & Rkhunter
Hello SuSE people, I keep getting messages everyday from rkhunter about possible root login because SSH V1 is running. I shouldn't need SSH because this is a stand-alone PC, right? So how do I disable it? Found something in the Yast /etc/Sysconfig editor but have no idea what the option should be Running 10.2 64 bit. Bob S. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
Hi Bob, On the command line as root: chkconfig -d sshd or in YaST System | System Services --> find sshd and turn off Regards Sean Bob S wrote:
Hello SuSE people,
I keep getting messages everyday from rkhunter about possible root login because SSH V1 is running.
I shouldn't need SSH because this is a stand-alone PC, right? So how do I disable it? Found something in the Yast /etc/Sysconfig editor but have no idea what the option should be
Running 10.2 64 bit.
Bob S.
-- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Wednesday 27 June 2007, Bob S wrote:
Hello SuSE people,
I keep getting messages everyday from rkhunter about possible root login because SSH V1 is running.
I shouldn't need SSH because this is a stand-alone PC, right? So how do I disable it? Found something in the Yast /etc/Sysconfig editor but have no idea what the option should be
Running 10.2 64 bit.
Bob S.
Shutting down sshd is not wise. There are many times where I have had to ssh into a "stand alone" machine. You should look into /etc/ssh/sshd_config and change the line that says Protocol 1,2 to just Protocol 2 However, running any modern version of ssh version 1 does not expose one to root logins as all known bugs have been patched. Seriously, rkhunter raises so many red herrings as to be useless in my opinion. -- _____________________________________ John Andersen -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Thursday 28 June 2007 05:16:44 John Andersen wrote:
On Wednesday 27 June 2007, Bob S wrote:
Hello SuSE people,
I keep getting messages everyday from rkhunter about possible root login because SSH V1 is running.
I shouldn't need SSH because this is a stand-alone PC, right? So how do I disable it? Found something in the Yast /etc/Sysconfig editor but have no idea what the option should be
Running 10.2 64 bit.
Bob S.
Shutting down sshd is not wise. There are many times where I have had to ssh into a "stand alone" machine.
You should look into /etc/ssh/sshd_config and change the line that says Protocol 1,2 to just Protocol 2
However, running any modern version of ssh version 1 does not expose one to root logins as all known bugs have been patched.
Seriously, rkhunter raises so many red herrings as to be useless in my opinion.
Thanks Sean & John. Bob S -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Thursday 28 June 2007 05:16:44 John Andersen wrote:
On Wednesday 27 June 2007, Bob S wrote:
Hello SuSE people,
I keep getting messages everyday from rkhunter about possible root login because SSH V1 is running.
I shouldn't need SSH because this is a stand-alone PC, right? So how do I disable it? Found something in the Yast /etc/Sysconfig editor but have no idea what the option should be
Running 10.2 64 bit.
Bob S.
Shutting down sshd is not wise. There are many times where I have had to ssh into a "stand alone" machine.
You should look into /etc/ssh/sshd_config and change the line that says Protocol 1,2 to just Protocol 2 John,
That line is commented out in my sshd_config file.
However, running any modern version of ssh version 1 does not expose one to root logins as all known bugs have been patched.
Seriously, rkhunter raises so many red herrings as to be useless in my opinion.
Very possible. Can't dispute you. Just want toget rid of that pita message.
Bob S -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Thursday 28 June 2007 16:14:54 John Andersen wrote:
On Thursday 28 June 2007, Bob S wrote:
John,
That line is commented out in my sshd_config file.
Yes, lines that are set to the default are commented out. Uncomment it and set it to Protocol 2
Yes, lines that are set to the default are commented out. Why? Jerome -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Fri, Jun 29, 2007 at 07:42:30AM -1000, Susemail wrote:
On Thursday 28 June 2007 16:14:54 John Andersen wrote:
On Thursday 28 June 2007, Bob S wrote:
John,
That line is commented out in my sshd_config file.
Yes, lines that are set to the default are commented out. Uncomment it and set it to Protocol 2
Yes, lines that are set to the default are commented out. Why?
To give an example. The default in 10.2 is "Protocol 2". Ciao, Marcus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Friday 29 June 2007 19:42:30 Susemail wrote:
On Thursday 28 June 2007 16:14:54 John Andersen wrote:
On Thursday 28 June 2007, Bob S wrote:
John,
That line is commented out in my sshd_config file.
Yes, lines that are set to the default are commented out. Uncomment it and set it to Protocol 2
Yes, lines that are set to the default are commented out.
Why?
To emphasize what the default is. This way you can quickly easily see what the default is. If it wasn't there, you'd have to look it up in some reference manual -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Friday 29 June 2007 08:23:56 Anders Johansson wrote:
On Friday 29 June 2007 19:42:30 Susemail wrote:
On Thursday 28 June 2007 16:14:54 John Andersen wrote:
On Thursday 28 June 2007, Bob S wrote:
John,
That line is commented out in my sshd_config file.
Yes, lines that are set to the default are commented out. Uncomment it and set it to Protocol 2
Yes, lines that are set to the default are commented out.
Why?
To emphasize what the default is. This way you can quickly easily see what the default is. If it wasn't there, you'd have to look it up in some reference manual
Thank you Anders, I opened the file and it's obvious what you mean. Is this a more or less general rule for comments in config files? Jerome -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Friday 29 June 2007, Susemail wrote:
Is this a more or less general rule for comments in config files?
Its quite common in the Linux world. Dozens of packages use this method. -- _____________________________________ John Andersen -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
On Friday 29 June 2007, Susemail wrote:
On Thursday 28 June 2007 16:14:54 John Andersen wrote:
On Thursday 28 June 2007, Bob S wrote:
John,
That line is commented out in my sshd_config file.
Yes, lines that are set to the default are commented out. Uncomment it and set it to Protocol 2
Yes, lines that are set to the default are commented out.
Why? Jerome
Because that's the way its done. The defaults that the developers chose are shown in the default setup but commented out. This is so that people can see the format for specifying these defaults. Ask the developers why they chose to do it this way. With No parameters sshd runs using that are generally regarded as safe (hence the silliness of HKHunter reporting vulnerabilities). -- _____________________________________ John Andersen -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org
participants (6)
-
Anders Johansson
-
Bob S
-
John Andersen
-
Marcus Meissner
-
Sean Craig
-
Susemail