| All Forums |
Register |
Login |
Search |
Subscriptions |
My Profile |
Inbox |
| Tool Warehouse |
FAQs |
Resources |
Help |
Member List |
Address Book |
Logout |
|
|
sshd not updating utmpx and wtmpx
|
Logged in as: Guest |
| Users viewing this topic: none |
|
Login  |
|
|
 sshd not updating utmpx and wtmpx - May 10, '06, 1:26:21 PM
|
|
|
Ron
Posts: 77
Joined: May 21, '03,
Status: offline
|
It would seem that sshd is not updating the utmpx and wtmpx files. I'm running version openssh-4.3.0.2.0-bin on SUA R2.
The side effect is that the 'who' command no longer works.
I've tested running a local ksh 'on the glass' and sure enough utmpx and wtmpx got updated.
Is this something anyone else is seeing?
Regards,
Ron
|
|
|
|
|
RE: sshd not updating utmpx and wtmpx - May 11, '06, 3:45:42 AM
|
|
|
Rodney
Posts: 3728
Joined: Jul. 9, '02,
From: /Tools lab
Status: offline
|
It took a bit to track down why, but it's fixed now.
I'll post a new version is a short while.
The new version will also include a new change for passwordless logins:
if the user has registered their password with regpwd or with crontab -p
then the login will have network disk access.
pkg_update -L openssh
|
|
|
|
|
RE: sshd not updating utmpx and wtmpx - May 11, '06, 9:12:50 PM
|
|
|
markfunk
Posts: 673
Joined: Mar. 31, '03,
Status: offline
|
Have you also disabled passwordless logins when the password is _not_
registered via regpwd ?
All logins should require a password.
Allowing passwordless logins. with non-network access,
usually causes a lot of grief and usually is of little actual value.
This is something that should be changed in rlogin/rcp as well as ssh/scp.
To this day, I regret not disabling this before SFU3.0 was shipped.
|
|
|
|
|
RE: sshd not updating utmpx and wtmpx - May 11, '06, 11:45:43 PM
|
|
|
Rodney
Posts: 3728
Joined: Jul. 9, '02,
From: /Tools lab
Status: offline
|
> Have you also disabled passwordless logins when the password is _not_ registered via regpwd ?
No. The "passwordless" login with SSH requires a key exchange between the two connecting machines
for that particular user. This is the same as on other Unix systems.
> Allowing passwordless logins. with non-network access,
> usually causes a lot of grief and usually is of little actual value.
It can cause some people to be confused.
But it can also be used as an incremental security step (containment).
There are organizations using rsh/rlogin who want the
target account to not have network access by a remote user.
|
|
|
|
|
RE: sshd not updating utmpx and wtmpx - May 12, '06, 9:04:49 AM
|
|
|
Ron
Posts: 77
Joined: May 21, '03,
Status: offline
|
Great stuff Rodney, 'who' is back in business ;)
Thanks!
Ron
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
|
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
|
|
Printable Version
