Manualshelf

HP-UX Secure Shell A.04.50.009, A.04.50.010, and A.04.50.011 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i Secure Shell Software
12345678910
It allows the specificuser@myhost.mydomain.com to login into any local
account on the remote machine.
OpenSSH 4.5p1 base code has functionality to support logging of sftp transactions.
LogFacility and LogLevel options are added to sftp-server as command-line
options to log these transactions. As a result, the following directives are not
supported in this release of Secure Shell:
#LogSftp no
#SftpLogFacility AUTH
#SftpLogLevel INFO
JAGaf59448: The following SMSE behavior is seen in this version of HP-UX Secure
Shell:
Audit log messages show repeated entries for a user. This occurs because bad login
attempts are logged in the audit file. For example, a user trying Public key
authentication with bad RSA and DSA keys results in a bad login attempt for each
key type. In such a scenario, the audit log has the following entries:
SELF-AUDITING TEXT: User= root uid=0 ssh authentication method PUBKEY - failed
SELF-AUDITING TEXT: User= root uid=0 ssh authentication success - user logged in
SELF-AUDITING TEXT: User= root uid=0 ssh session open
HP-UX Secure Shell user authentication using public-key fails in a server
environment if UsePAM is set to YES and pam.conf is set to PAM_LDAP.
Workaround: HP recommends the PAM_AUTHZ mechanism for HP-UX Secure
Shell environments that use public-key authentication with PAM_LDAP-based
account management.
On some systems, the following messages appears in the syslog.log file, when
a user logs out of a Secure Shell session:
pam_setcred: error Authentication failed
pam_setcred: error Permission denied
These messages appears only when the daemon is running in debug mode. These
messages are not relevant to (and does not affect) HP-UX Secure Shell operations.
The PAM function pam_setcred generates this message. These error messages
appear during the scenarios listed in Table 1-2
Table 1-2 Scenarios where pam_setcred Generates Error Messages
Error MessagesKeyServ RunningUsePrivUser
Permission deniednoyesroot
Authentication failednoyesnon-root
Permission deniednonoroot
Permission deniednononon-root
Permission deniedyesyesroot
Known Problems and Workarounds 9