Is deepthough a label aware host too? I suspect you are having a label mismatch problem. Do 'tninfo -h deepthough' and see what label deepthough is at. If it's not a label aware host, the label of source and destination need to match for communication to succeed.
Jarrett Nicholas Senedzuk wrote: > I know this might be a dumb question but can you ping the other > system? Or how about doing a traceroute to it? > > On 5/24/07, *Elton* < Elton.Morrison at ngc.com > <mailto:Elton.Morrison at ngc.com>> wrote: > > I have been trying to configure ssh on Sol 10 11/06 Trusted > Extension and I have not had much luck. A little background: > > I have small development network setup that is using LDAP. > > All machines have compatable Label_encodings files. > > I have enabled ssh for root in the global zone. > > My problem lies in a labeled zone, for example zone labeled FUBAR. > > I type ssh deepthough (an ldap client on the network) and I get > nothing, no password prompt nothing. > > If I use ssh -v deepthought I see the following: > debug1: Reading configuration data /etc/ssh/ssh_config > debug1: Applying options for * > debug1: Rhosts Authentication disabled, orgination port will not > be trusted. > debug1: ssh_connect: needpriv 0 > debug1: connecting to deepthought [ip.address] port 22 > > that's it. It will eventually time out. I am not trying to do > anything complex. I simply need to ssh from a labeld zone using > simple password authentication. (we are on a closed network and > this is simply to support CVS). > > > This message posted from opensolaris.org <http://opensolaris.org> > _______________________________________________ > security-discuss mailing list > security-discuss at opensolaris.org > <mailto:security-discuss at opensolaris.org> > > > ------------------------------------------------------------------------ > > _______________________________________________ > security-discuss mailing list > security-discuss at opensolaris.org >
