X-MimeOLE: Produced By Microsoft Exchange V6.5
Received: by onstor-exch02.onstor.net 
	id <01C880A6.AC7D1070@onstor-exch02.onstor.net>; Fri, 7 Mar 2008 15:57:52 -0700
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----_=_NextPart_001_01C880A6.AC7D1070"
References: <20080307133947.19d9b841@ripper.onstor.net>
Content-class: urn:content-classes:message
Subject: RE: ssh related stuff
Date: Fri, 7 Mar 2008 15:57:52 -0700
Message-ID: <BB375AF679D4A34E9CA8DFA650E2B04E068C02@onstor-exch02.onstor.net>
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
Thread-Topic: ssh related stuff
Thread-Index: AciAm8cLlwPe9MWURk+c1CrMSq5AgQACGvs+
From: "Brian Baker" <IMCEAEX-_O=ONSTOR_OU=FIRST+20ADMINISTRATIVE+20GROUP_CN=RECIPIENTS_CN=BRIAN+2EBAKER@onstor.com>
To: "Andy Sharp" <andy.sharp@onstor.com>

This is a multi-part message in MIME format.

------_=_NextPart_001_01C880A6.AC7D1070
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Andy,
I found this info.
http://www.miscdebris.net/blog/2007/05/24/x11-forwarding-with-openssh-on-=
bare-ubuntu-server-edition/ =
<http://www.miscdebris.net/blog/2007/05/24/x11-forwarding-with-openssh-on=
-bare-ubuntu-server-edition/>=20
Looks like xauth is the only package needed. you were right on.
I've added it. Let me know how it goes.

________________________________

From: Andy Sharp
Sent: Fri 3/7/2008 1:39 PM
To: Brian Baker
Subject: ssh related stuff



Hi Brian,

Between the last time I logged in through ssh last week, and the first
time I logged in this week, which was Monday morning, something changed
on the ssh gateway machine that killed X11 forwarding.  That's an
essential part of using this facility, so we need to get that
restored.  I noticed that xauth isn't on the machine, so perhaps you
removed all X related packages?  xauth is in xbase-clients package, but
perhaps there are other things involved as well, I don't know.

I'm attaching a copy of the log-watcher script I use at home in case
you were interested in it.  Its basic scheme is to firewall any IP
address from which someone tries to log into a bogus user name.  We
probably can't use that at Onstor because if you mistype your user
name, you're toast until that rule can be removed from the firewall.
More likely you just would want it to send you an email or something.
If you want to use it at all.

Cheers,

a



------_=_NextPart_001_01C880A6.AC7D1070
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<HTML dir=3Dltr><HEAD><TITLE>ssh related stuff</TITLE>=0A=
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Dunicode">=0A=
<META content=3D"MSHTML 6.00.6000.16608" name=3DGENERATOR></HEAD>=0A=
<BODY>=0A=
<DIV id=3DidOWAReplyText85761 dir=3Dltr>=0A=
<DIV dir=3Dltr><FONT face=3D"Courier New" color=3D#000000 =
size=3D2>Andy,</FONT></DIV>=0A=
<DIV dir=3Dltr><FONT face=3D"Courier New" size=3D2>I found this =
info.</FONT></DIV>=0A=
<DIV dir=3Dltr><A =
href=3D"http://www.miscdebris.net/blog/2007/05/24/x11-forwarding-with-ope=
nssh-on-bare-ubuntu-server-edition/"><FONT face=3D"Courier New" =
size=3D2>http://www.miscdebris.net/blog/2007/05/24/x11-forwarding-with-op=
enssh-on-bare-ubuntu-server-edition/</FONT></A></DIV>=0A=
<DIV dir=3Dltr><FONT face=3D"Courier New" size=3D2>Looks like xauth is =
the only package needed. you were right on.</FONT></DIV>=0A=
<DIV dir=3Dltr><FONT face=3D"Courier New" size=3D2>I've added it. Let me =
know how it goes.</FONT><BR></DIV>=0A=
<DIV dir=3Dltr>=0A=
<HR tabIndex=3D-1>=0A=
</DIV>=0A=
<DIV dir=3Dltr><FONT face=3DTahoma size=3D2><B>From:</B> Andy =
Sharp<BR><B>Sent:</B> Fri 3/7/2008 1:39 PM<BR><B>To:</B> Brian =
Baker<BR><B>Subject:</B> ssh related stuff<BR></FONT><BR></DIV></DIV>=0A=
<DIV>=0A=
<P><FONT size=3D2>Hi Brian,<BR><BR>Between the last time I logged in =
through ssh last week, and the first<BR>time I logged in this week, =
which was Monday morning, something changed<BR>on the ssh gateway =
machine that killed X11 forwarding.&nbsp; That's an<BR>essential part of =
using this facility, so we need to get that<BR>restored.&nbsp; I noticed =
that xauth isn't on the machine, so perhaps you<BR>removed all X related =
packages?&nbsp; xauth is in xbase-clients package, but<BR>perhaps there =
are other things involved as well, I don't know.<BR><BR>I'm attaching a =
copy of the log-watcher script I use at home in case<BR>you were =
interested in it.&nbsp; Its basic scheme is to firewall any =
IP<BR>address from which someone tries to log into a bogus user =
name.&nbsp; We<BR>probably can't use that at Onstor because if you =
mistype your user<BR>name, you're toast until that rule can be removed =
from the firewall.<BR>More likely you just would want it to send you an =
email or something.<BR>If you want to use it at =
all.<BR><BR>Cheers,<BR><BR>a<BR></FONT></P></DIV></BODY></HTML>
------_=_NextPart_001_01C880A6.AC7D1070--
