Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Multihomed Configuration

from [Dallas Clement] Network Security [Permanent Link]
Subject: Re: Multihomed Configuration
Date: Thu, 07 Jun 2007 16:02:45 -0500 
Yes, you are right.  I've verified that it does work (is listening) on
all available interfaces with the default configuration.

On Thu, 2007-06-07 at 14:31 -0500, Leif Ericksen wrote:

If you leave the listen commented out so that you do not define an
interface is that not the default?   That is to say it will listen in on
all defined interfaces?  Also it is good to not that if you do define an
interface and leave out loop back it will not talk on loop back, or at
least that is what I had happen on my Linux boxes.


--
Leif

On Thu, 2007-06-07 at 12:06 -0500, Dallas Clement wrote:

On Wed, 2007-06-06 at 22:32 +0530, Nirmal Babu Puliyadi Suriya Kumar -X
(npuliyad - HCL at Cisco) wrote:

Hi Folks,

I am using version openssh-4.6p1 in solaris server.

Consider my solaris PC is configured as multihomed with two NIC.

e69001% ifconfig -a
ce0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
        inet 172.23.87.109 netmask ffffff00 broadcast 172.23.87.255
ce1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
        inet 192.168.2.133 netmask ffffff00 broadcast 192.168.2.255

I mean my PC has two IP address. By making use of ListenAddress in
sshd_config file, i can able to listen ssh/ sftp request from both IP
addresses.

e69001# grep "ListenAddress" sshd_config
#ListenAddress 0.0.0.0
#ListenAddress ::
ListenAddress 172.23.87.109
ListenAddress 192.168.2.133

If we do sftp to both the IP address from different machine, it will
pointout the same default root directory. 


From machine1:


tballraker7# ./sftp svplus@192.168.2.133
Connecting to 192.168.2.133...
svplus@192.168.2.133's password:
sftp> pwd
Remote working directory: /usr/users/svplus
sftp > quit


From machine2:


cwmsent51# ./sftp svplus@172.23.87.109
Connecting to 172.23.87.109...
svplus@172.23.87.109's password:
sftp> pwd
Remote working directory: /usr/users/svplus
sftp > quit


Here, the default directory will be defined based on the login username.


But, Is it possible to assign/ configure different default directory for
each IP address with same login username?

Rgds
Nirmal


It's a shame to have to hard-configure both IP addresses in this config
file -- especially if you are getting them dynamically through DHCP.  I
wonder if there is a different way to enable sshd on both NICs without
specifying the IP address...
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Multihomed Configuration, Nirmal Babu Puliyadi Suriya Kumar -X (npuliyad - HCL at Cisco)
Next by Date:  Re: Multihomed Configuration, Greg Wooledge
Previous by Thread:  Re: Multihomed Configuration, Dallas Clement
Next by Thread:  Re: Multihomed Configuration, Greg Wooledge
Indexes:  [Date] [Thread] [Top] [All Lists]