Manualshelf

HP-UX Secure Shell A.04.50.003, A.04.50.004, and A.04.50.005 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i Secure Shell Software
45678910111213
1. Log in as superuser.
2. Insert the software CD into the appropriate drive if installing from the Application Release
CD. If installing from http://software.hp.com, download the depot and use the swinstall
directions provided on the Installation page where you downloaded the software.
3. Run $ swinstall -s <fully-qualified depot source path> at the command
prompt.
4. In the Source Depot Path field, enter the drive mount point and click OK. Change
theSource Host Name, if needed.
5. Select T1471AA from the list of available software, and click Mark for Install on the Actions
menu.
6. Click Install on the Actions menu.
7. Click OK in the Install Analysis window when the Status field displays a Ready message.
8. Click Yes. The swinstall command loads the HP-UX Secure Shell files on the system in
approximately 3 to 5 minutes.
NOTE: The sshd daemon is preconfigured, and it is started after installation.
The swinstall command installs HP-UX Secure Shell in the /opt/ssh/ directory.
HP-UX Secure Shell and chroot Environments
HP-UX Secure Shell versions A.04.50.003, A.04.50.004, and A.04.50.005 support chroot
functionality for the ssh, sftp, and scp commands. The chroot functionality is mainly used
as an added security measure.
When you enable chroot, you can start an application in a specified directory and enable all its
users access to that directory and the directories below it. It prevents users from using the cd
command to access directories at a higher level. Use this functionality to enable restricted file
and directory access to users of a particular application. This is not an end-user feature. The
system administrator must enable the chroot functionality for an application. All users of that
application will automatically be subject to the restrictions imposed by chroot.
See the README file at /opt/ssh/README.hp for more information on setting up the
chrootfunctionality. Thechrootsetup script is available at /opt/ssh/ssh_chroot_setup.sh.
Frequently Asked Questions (FAQ)
This section discusses questions frequently asked about HP-UX Secure Shell.
What is the difference between HP-UX Secure Shell A.04.50 and OpenSSH 4.5p1? OpenSSH
4.5p1 is a free version of the SSH protocol suite of network connectivity tools that increasing
numbers of people on the Internet are coming to rely on. OpenSSH supports SSH protocol versions
1.3, 1.5, and 2.0.
HP-UX Secure Shell is a binary package compiled with support for PAM, gssapi, krb5, libwrap,
and no support for Smartcard. HP-UX Secure Shell is built to install and un-install using the
SD-UX utility and includes all required pre-requisites.
How do I find out the version of HP-UX Secure Shell I am using? How do I find out whether I am
running HP-UX Secure Shell or the public domain version of OpenSSH? Use the swlist
command to display the name and version number of HP-UX Secure Shell. For example:
# swlist grep T1471
T1471AA A.04.50 HP-UX Secure Shell
You can also use the what command shown in the example below:
# what /usr/bin/scp
Is libwrap.a linked in HP-UX Secure Shell? Must I only configure hosts.allow and
hosts.deny to use the access control provided by tcp_wrapper? Yes, thelibwrap.a archive
12 HP-UX Secure Shell A.04.50.003, A.04.50.004, and A.04.50.005