Learn how easy it is to sync an existing GitHub or Google Code repo to a SourceForge project! See Demo

Close

#27 openssh 4.5p1-r2 from="host" not working

open
nobody
None
5
2008-02-21
2008-02-21
lakewood81
No

I have installed the latest openssh 4.5p1-r2 package on an AIX 5.3 server and the from="host" option in .ssh/authorized_keys no longer works properly.

The debug meesages from sshd show that it's comparing the IP rather than the hostname to the authorized_keys entry.

debug3: mm_send_debug: Sending debug: Your host '10.6.127.55' is not permitted to use this key for login.

.ssh/authorized_keys
from="hostxyz" ssh-dss AAAAB3NzaC1.....

The only work-around I have found so far is to use the actual IP in the from "" field
like the example below:

.ssh/authorized_keys
from="10.6.127.55" ssh-dss AAAAB3NzaC1.....

I have not seen this bug in previous releases of openssh.

Discussion

  • Logged In: NO

    Hi,

    I confirm there is even more general problem with resolving IPs to names.

    Another issue, which might be related to this one is the following problem:

    - in wtmp there are only IPs, not the host names gathered (in previous versions it worked correctly), the IPs can be seen using e.g. last command

    For telnet connections the hostnames are resolved and written to the wtmp correctly on the same host.

    My env. is AIX 5L V5.3 TL7-SP2 (on SP1 the same problem existed so it is rather related to the openSSH release)

    Best regards,
    S.O.

     
  • Logged In: NO

    Any chances to get the patch for this issue?

    Cheers,
    S.O.

     
  • ssh
    ssh
    2008-05-06

    Logged In: YES
    user_id=1169276
    Originator: NO

    Hi, you can get the ifix for this issue. But new version of ssh i.e openssh-4.7 has been uploaded which does not have this issue.