OpenSSH on AIX / Bugs / #15 sftp login allowed when rlogin=false

#15 sftp login allowed when rlogin=false

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2006-09-04

Created: 2006-09-04

Creator: cris

Private: No

if a user is not allowed to remote login in the
/etc/security/user file, ssh correctly disallows logins
for ssh and scp type connections, but will allow login
via sftp.

this only seems to happen on the AIX5.3. on AIX5.2 the
permission is denied (although not with the same
"Remote login for account appa is not allowed." as for
ssh and scp - it just seems to say "access denied").

Discussion

cris - 2006-09-13

Logged In: YES
user_id=1582158

this does not happen on the openssh.com version of ssh, so
it must be related to the AIX patch. where are the latest
revisions of the patch? last one on here is the 3.8.1 patch....

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

ssh - 2006-11-14

Logged In: YES
user_id=1169276

This is because, ftp supports this. i.e when rlogin=false,
it is possible to connect to that system using ftp. That's
why these changes have been made for sftp.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

ssh - 2007-01-30

Logged In: YES
user_id=1169276
Originator: NO

Yes this is related to AIX. Patch files have been uploaded on sf.net

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

OpenSSH on AIX Bugs

Group

Searches

Help

#15 sftp login allowed when rlogin=false

Discussion