Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Problem with scp and SSH on Arch Linux

from [Derek Martin] Network Security [Permanent Link]
Subject: Re: Problem with scp and SSH on Arch Linux
Date: Wed, 27 Jun 2007 19:42:39 -0400 
On Mon, Jun 25, 2007 at 11:18:00PM -0300, Guido Barosio wrote:

Caught this message and I am currently wondering why a /bin/false'ed
passwd file should allow a scp to get in the host and attempt the
copy.


OpenSSH does the authentication... it doesn't need to care what your
shell is for the authentication to succeed.  All that matters for
login to be successful is for some configured authentication mechanism
to succeed; i.e. the user's supplied password matches what's CRYPTed
in the passwd file, or the user's private key matches the public key
stored in the user's authorized keys file, etc.  None of this requires
the shell to work.

For the scp to succeed, the user needs a working shell, because sshd
will start the user's shell in order to have it execute the scp
command on the remote system.  If the shell doesn't work, the scp
command will never run...

-- 
Derek D. Martin
http://www.pizzashack.org/
GPG Key ID: 0x81CFE75D

Attachment: pgpanssCDNTI4.pgp
Description: PGP signature

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Pubic key with proxy command, Mariyappan, Balaji (GE Indust, ES RAIL, consultant)
Previous by Thread:  Re: Problem with scp and SSH on Arch Linux, Guido Barosio
Next by Thread:  SCPing a file from UNIX to Windows - scp : Invalid argument, Hariram, Sankarlal
Indexes:  [Date] [Thread] [Top] [All Lists]