Has anyone had success with getting /dev/random to work after installing SUNWski? After I install the pkg and start /etc/ init.d/cryptorand, the /dev/random file remains 0 bytes. I am running Solaris 2.8 - David
On Thu, 20 Jul 2000, Higdon, David M - CNF wrote:> Has anyone had success with getting /dev/random to work > after installing SUNWski? After I install the pkg and start /etc/ > init.d/cryptorand, the /dev/random file remains 0 bytes. > > I am running Solaris 2.8I'm running Solaris 2.8 sun4m 32-bit and SUNWski without any problem. I did notice that on my Sol 7 E250 Machine running in 64-bit the SUNWski would not run. I assume this is because of the system running at 64-bit rather than 32-bit although I haven't had the time to confirm this. Sincerely, Brian Friday Systems Administrator La Sierra University (909) 785-2554 x2
Did the /dev/random file start growing immeadiately or did it take a while? Thanks David Higdon UNIX System Administrator -----Original Message----- From: Brian Friday [mailto:bfriday at LaSierra.edu] Sent: Thursday, July 20, 2000 1:46 PM To: 'openssh-unix-dev at mindrot.org' Subject: Re: SUNWski On Thu, 20 Jul 2000, Higdon, David M - CNF wrote:> Has anyone had success with getting /dev/random to work > after installing SUNWski? After I install the pkg and start /etc/ > init.d/cryptorand, the /dev/random file remains 0 bytes. > > I am running Solaris 2.8I'm running Solaris 2.8 sun4m 32-bit and SUNWski without any problem. I did notice that on my Sol 7 E250 Machine running in 64-bit the SUNWski would not run. I assume this is because of the system running at 64-bit rather than 32-bit although I haven't had the time to confirm this. Sincerely, Brian Friday Systems Administrator La Sierra University (909) 785-2554 x2
Still no luck. I verified that I have the SUNWski pkg installed too. David -----Original Message----- From: Brian Friday [mailto:bfriday at LaSierra.edu] Sent: Thursday, July 20, 2000 2:03 PM To: Higdon, David M - CNF Cc: 'openssh-unix-dev at mindrot.org' Subject: RE: SUNWski On Thu, 20 Jul 2000, Higdon, David M - CNF wrote:> Did the /dev/random file start growing immeadiately or > did it take a while?Hmm... Well it wasn't something I looked at right away but I gave it about 2-5 minutes after first starting the SUNWski package up and everything worked fine. Although I waited this long because of earlier experiences with EGD. Sincerely, Brian Friday Systems Administrator La Sierra University (909) 785-2554 x2
I am running 2.8 on an Ultra 10 in 64bit mode. I have both SUNWski and SUNWlmsx. It works. -- john weaver -- jweaver at aens.net | Systems Administrator
What happens when you run snoop on the system that you ssh from? Can you see your input in clear text? Because I can! David -----Original Message----- From: Brian Friday [mailto:bfriday at LaSierra.edu] Sent: Thursday, July 20, 2000 2:37 PM To: Higdon, David M - CNF Cc: 'openssh-unix-dev at mindrot.org' Subject: RE: SUNWski I've got the following packages installed application SUNWski SKI 1.0 Software (User Package) application SUNWskimu SKI 1.0 Software (User Manual Page Package) Chip mentioned this is a undocumented dependency but this should be installed with your regular operating system (Sol 7 or 8) as it is just workshop libraries not the actual workshop. system SUNWlmsx Sun WorkShop Bundled 64-bit shared libm Sincerely, Brian Friday Systems Administrator La Sierra University (909) 785-2554 x2
Hi, On Thu, 20 Jul 2000 13:42:03 -0700, about the topic "SUNWski", "Higdon, David M - CNF" <Higdon.David at cnf.com> wrote: > Has anyone had success with getting /dev/random to work > after installing SUNWski? After I install the pkg and start /etc/ > init.d/cryptorand, the /dev/random file remains 0 bytes. By what did you know /dev/random size? /usr/ucb/ls always tells /dev/random size is zero... -- NISHIJIMA, Takanori / Canon Inc., Office Imaging Products Development Center 3
On Thu, Jul 20, 2000 at 02:43:30PM -0700, Higdon, David M - CNF wrote:> What happens when you run snoop on the system > that you ssh from? Can you see your input in > clear text? Because I can!could you please show me? what versions of ssh are you using?
solaris 2.8 openssh 2.1.1p4 openssl 0.0.5a zlib 1.1.3 SUNWski - David -----Original Message----- From: Markus Friedl [mailto:markus.friedl at informatik.uni-erlangen.de] Sent: Sunday, July 23, 2000 7:10 AM To: Higdon, David M - CNF Cc: 'Brian Friday'; 'openssh-unix-dev at mindrot.org'; openssh at openssh.com Subject: Re: SUNWski On Thu, Jul 20, 2000 at 02:43:30PM -0700, Higdon, David M - CNF wrote:> What happens when you run snoop on the system > that you ssh from? Can you see your input in > clear text? Because I can!could you please show me? what versions of ssh are you using?
By running the snoop utility that comes with the Solaris
OS.
Here is the output from running snoop
Snoop is running on a third system that does not have ssh
installed.
I am trying to ssh from machine A to machine B
from machine C
# snoop machine A
machine A -> hostname.xxx.com TELNET C port=38920 s
hostname.xxx.com -> machine A TELNET R port=38920 s
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 s
hostname.xxx.com -> machine A TELNET R port=38920 s
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 h
hostname.xxx.com -> machine A TELNET R port=38920 h
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 2
hostname.xxx.com -> machine A TELNET R port=38920 2
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 m
hostname.xxx.com -> machine A TELNET R port=38920 m
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 a
hostname.xxx.com -> machine A TELNET R port=38920 a
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 c
hostname.xxx.com -> machine A TELNET R port=38920 c
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 h
hostname.xxx.com -> machine A TELNET R port=38920 h
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 i
hostname.xxx.com -> machine A TELNET R port=38920 i
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 n
hostname.xxx.com -> machine A TELNET R port=38920 n
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 e
hostname.xxx.com -> machine A TELNET R port=38920 e
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 B
hostname.xxx.com -> machine A TELNET R port=38920 B
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920 Passphrase for key
"
machine A -> hostname.xxx.com TELNET C port=38920
machine A -> hostname.xxx.com TELNET C port=38920 m
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 o
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 n
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 g
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 0
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 0
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 s
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920 e
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920 Authentication succe
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920 Last login: Tue Jul
machine A -> hostname.xxx.com TELNET C port=38920
hostname.xxx.com -> machine A TELNET R port=38920 Sun Microsystems Inc
machine A -> hostname.xxx.com TELNET C port=38920
-David
-----Original Message-----
From: Damien Miller [mailto:djm at mindrot.org]
Sent: Monday, July 24, 2000 4:47 PM
To: Higdon.David at cnf.com
Cc: 'Markus Friedl'; 'Brian Friday'; 'openssh-unix-dev at
mindrot.org';
openssh at openssh.com
Subject: RE: SUNWski
On Mon, 23 Jul 2000, Higdon, David M - CNF wrote:
How do you see the login and password in the clear? Can you send a log
of such an event?
>
> solaris 2.8
> openssh 2.1.1p4
> openssl 0.0.5a
> zlib 1.1.3
> SUNWski
>
>
> - David
>
>
>
> -----Original Message-----
> From: Markus Friedl [mailto:markus.friedl at informatik.uni-erlangen.de]
> Sent: Sunday, July 23, 2000 7:10 AM
> To: Higdon, David M - CNF
> Cc: 'Brian Friday'; 'openssh-unix-dev at mindrot.org';
openssh at openssh.com
> Subject: Re: SUNWski
>
>
> On Thu, Jul 20, 2000 at 02:43:30PM -0700, Higdon, David M - CNF wrote:
> > What happens when you run snoop on the system
> > that you ssh from? Can you see your input in
> > clear text? Because I can!
>
> could you please show me? what versions of ssh are you using?
>
>
--
| "Bombay is 250ms from New York in the new world order" - Alan Cox
| Damien Miller - http://www.mindrot.org/
| Email: djm at mindrot.org (home) -or- djm at ibs.com.au (work)
It clearly shows that I have used the ssh command! I am not using telnet. That is why I have such a concern. It only shows this type of output from when I run the snoop command from a system that has ssh installed. host1 -> host2 TCP D=22 S=4404 Syn Seq=3951258970 Len=0 Win=16384 host2 -> host1 TCP D=4404 S=22 Rst Ack=3951258971 Win=0 -David -----Original Message----- From: Ricardo Cerqueira [mailto:rmcc at novis.pt] Sent: Tuesday, July 25, 2000 4:10 AM To: openssh-unix-dev at mindrot.org Subject: Re: SUNWski On Tue, Jul 25, 2000 at 12:36:17PM +1000, Damien Miller wrote:> On Mon, 24 Jul 2000, Higdon, David M - CNF wrote: > > > > > By running the snoop utility that comes with the Solaris > > OS. > > > > Here is the output from running snoop > > > > Snoop is running on a third system that does not have ssh > > installed. > > > > I am trying to ssh from machine A to machine B > > It looks like you have telnetted to machine A from hostname.xxx.com! > This traffic is going across your net in the clear.Right. He's using Telnet, and not SSH. snoop should show something like this: host1 -> host2 TCP D=22 S=4404 Syn Seq=3951258970 Len=0 Win=16384 host2 -> host1 TCP D=4404 S=22 Rst Ack=3951258971 Win=0 RC> > -d > > > > > from machine C > > > > # snoop machine A > > machine A -> hostname.xxx.com TELNET C port=38920 s > > hostname.xxx.com -> machine A TELNET R port=38920 s > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 s > > hostname.xxx.com -> machine A TELNET R port=38920 s > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 h > > hostname.xxx.com -> machine A TELNET R port=38920 h > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 2 > > hostname.xxx.com -> machine A TELNET R port=38920 2 > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 m > > hostname.xxx.com -> machine A TELNET R port=38920 m > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 a > > hostname.xxx.com -> machine A TELNET R port=38920 a > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 c > > hostname.xxx.com -> machine A TELNET R port=38920 c > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 h > > hostname.xxx.com -> machine A TELNET R port=38920 h > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 i > > hostname.xxx.com -> machine A TELNET R port=38920 i > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 n > > hostname.xxx.com -> machine A TELNET R port=38920 n > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 e > > hostname.xxx.com -> machine A TELNET R port=38920 e > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 B > > hostname.xxx.com -> machine A TELNET R port=38920 B > > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 Passphrase for key"> > machine A -> hostname.xxx.com TELNET C port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 m > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 o > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 n > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 g > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 0 > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 0 > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 s > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 e > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 > > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 Authenticationsucce> > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 Last login: TueJul> > machine A -> hostname.xxx.com TELNET C port=38920 > > hostname.xxx.com -> machine A TELNET R port=38920 Sun MicrosystemsInc> > machine A -> hostname.xxx.com TELNET C port=38920 > > > > > > -David > > > > -----Original Message----- > > From: Damien Miller [mailto:djm at mindrot.org] > > Sent: Monday, July 24, 2000 4:47 PM > > To: Higdon.David at cnf.com > > Cc: 'Markus Friedl'; 'Brian Friday'; 'openssh-unix-dev at mindrot.org'; > > openssh at openssh.com > > Subject: RE: SUNWski > > > > > > On Mon, 23 Jul 2000, Higdon, David M - CNF wrote: > > > > How do you see the login and password in the clear? Can you send a log > > of such an event? > > > > > > > > solaris 2.8 > > > openssh 2.1.1p4 > > > openssl 0.0.5a > > > zlib 1.1.3 > > > SUNWski > > > > > > > > > - David > > > > > > > > > > > > -----Original Message----- > > > From: Markus Friedl [mailto:markus.friedl at informatik.uni-erlangen.de] > > > Sent: Sunday, July 23, 2000 7:10 AM > > > To: Higdon, David M - CNF > > > Cc: 'Brian Friday'; 'openssh-unix-dev at mindrot.org';openssh at openssh.com> > > Subject: Re: SUNWski > > > > > > > > > On Thu, Jul 20, 2000 at 02:43:30PM -0700, Higdon, David M - CNF wrote: > > > > What happens when you run snoop on the system > > > > that you ssh from? Can you see your input in > > > > clear text? Because I can! > > > > > > could you please show me? what versions of ssh are you using? > > > > > > > > > > > > -- > | "Bombay is 250ms from New York in the new world order" - Alan Cox > | Damien Miller - http://www.mindrot.org/ > | Email: djm at mindrot.org (home) -or- djm at ibs.com.au (work) > > > >-- +------------------- | Ricardo Cerqueira | PGP Key fingerprint - B7 05 13 CE 48 0A BF 1E 87 21 83 DB 28 DE 03 42 | Novis - Engenharia ISP / Rede T?cnica | P?. Duque Saldanha, 1, 7? E / 1050-094 Lisboa / Portugal | Tel: +351 21 3166700 (24h/dia) - Fax: +351 21 3166701