Charles Steinkuehler wrote:
> When you run ssh on a *nix box, it will default to using a "low" port to > make the connection unless you specify a command line switch (which is > different for ssh, scp, and varies from one ssh implementation to anoteher). I just found this on the openssh faq: > 2.1 - Why does ssh/scp make connections from low-numbered ports. > > The OpenSSH client uses low numbered ports for rhosts and rhosts-rsa authentication > because the server needs to trust the username provided by the client. To get around > this, you can add the below example to your ssh_config or ~/.ssh/config file. > UsePrivilegedPort no > > Or you can specify this option on the command line, using the -o option to ssh(1) >command. > $ ssh -o "UsePrivilegedPort no" host.com And I guess I always default to not using rhosts anything. I also think that the sshd default config is to not use rhosts either, because I see this in the sshd_config file that's downloaded from the net > # rhosts authentication should not be used > RhostsAuthentication no > # Don't read the user's ~/.rhosts and ~/.shosts files > IgnoreRhosts yes > # For this to work you will also need host keys in /usr/local/ssh/etc/ssh_known_ > hosts > RhostsRSAAuthentication no > # similar for protocol version 2 > HostbasedAuthentication no > # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication > #IgnoreUserKnownHosts yes So now I'm all confused on what's the best way to handle this. It's a bit of a mess. Matt _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
