X-MimeOLE: Produced By Microsoft Exchange V6.5
Received: by onstor-exch02.onstor.net 
	id <01C8809D.3688CFDC@onstor-exch02.onstor.net>; Fri, 7 Mar 2008 14:50:09 -0700
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----_=_NextPart_001_01C8809D.3688CFDC"
References: <20080307133947.19d9b841@ripper.onstor.net>
Content-class: urn:content-classes:message
Subject: RE: ssh related stuff
Date: Fri, 7 Mar 2008 14:50:09 -0700
Message-ID: <BB375AF679D4A34E9CA8DFA650E2B04E068BFC@onstor-exch02.onstor.net>
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
Thread-Topic: ssh related stuff
Thread-Index: AciAm8cLlwPe9MWURk+c1CrMSq5AgQAAFy6D
From: "Brian Baker" <IMCEAEX-_O=ONSTOR_OU=FIRST+20ADMINISTRATIVE+20GROUP_CN=RECIPIENTS_CN=BRIAN+2EBAKER@onstor.com>
To: "Andy Sharp" <andy.sharp@onstor.com>

This is a multi-part message in MIME format.

------_=_NextPart_001_01C8809D.3688CFDC
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Andy,
I haven't removed anything from the server. I don't believe any packages =
were installed on this system to begin with. I'll install anything you =
need though.=20
Installing xorg gdm may give you all that you need.
=20
Thanks for the script. I will take a look at it.

________________________________

From: Andy Sharp
Sent: Fri 3/7/2008 1:39 PM
To: Brian Baker
Subject: ssh related stuff



Hi Brian,

Between the last time I logged in through ssh last week, and the first
time I logged in this week, which was Monday morning, something changed
on the ssh gateway machine that killed X11 forwarding.  That's an
essential part of using this facility, so we need to get that
restored.  I noticed that xauth isn't on the machine, so perhaps you
removed all X related packages?  xauth is in xbase-clients package, but
perhaps there are other things involved as well, I don't know.

I'm attaching a copy of the log-watcher script I use at home in case
you were interested in it.  Its basic scheme is to firewall any IP
address from which someone tries to log into a bogus user name.  We
probably can't use that at Onstor because if you mistype your user
name, you're toast until that rule can be removed from the firewall.
More likely you just would want it to send you an email or something.
If you want to use it at all.

Cheers,

a



------_=_NextPart_001_01C8809D.3688CFDC
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<HTML dir=3Dltr><HEAD><TITLE>ssh related stuff</TITLE>=0A=
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Dunicode">=0A=
<META content=3D"MSHTML 6.00.6000.16608" name=3DGENERATOR></HEAD>=0A=
<BODY>=0A=
<DIV id=3DidOWAReplyText40379 dir=3Dltr>=0A=
<DIV dir=3Dltr><FONT face=3DArial color=3D#000000 =
size=3D2>Andy,</FONT></DIV>=0A=
<DIV dir=3Dltr><FONT face=3DArial size=3D2>I haven't removed anything =
from the server. I don't believe any packages were installed on this =
system to begin with. I'll install anything you need though. =
</FONT></DIV>=0A=
<DIV dir=3Dltr><FONT face=3DArial size=3D2>Installing xorg gdm may give =
you all that you need.</FONT></DIV>=0A=
<DIV dir=3Dltr><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>=0A=
<DIV dir=3Dltr><FONT face=3DArial size=3D2>Thanks for the script. I will =
take&nbsp;a look at it.</FONT></DIV></DIV>=0A=
<DIV dir=3Dltr><BR>=0A=
<HR tabIndex=3D-1>=0A=
<FONT face=3DTahoma size=3D2><B>From:</B> Andy Sharp<BR><B>Sent:</B> Fri =
3/7/2008 1:39 PM<BR><B>To:</B> Brian Baker<BR><B>Subject:</B> ssh =
related stuff<BR></FONT><BR></DIV>=0A=
<DIV>=0A=
<P><FONT size=3D2>Hi Brian,<BR><BR>Between the last time I logged in =
through ssh last week, and the first<BR>time I logged in this week, =
which was Monday morning, something changed<BR>on the ssh gateway =
machine that killed X11 forwarding.&nbsp; That's an<BR>essential part of =
using this facility, so we need to get that<BR>restored.&nbsp; I noticed =
that xauth isn't on the machine, so perhaps you<BR>removed all X related =
packages?&nbsp; xauth is in xbase-clients package, but<BR>perhaps there =
are other things involved as well, I don't know.<BR><BR>I'm attaching a =
copy of the log-watcher script I use at home in case<BR>you were =
interested in it.&nbsp; Its basic scheme is to firewall any =
IP<BR>address from which someone tries to log into a bogus user =
name.&nbsp; We<BR>probably can't use that at Onstor because if you =
mistype your user<BR>name, you're toast until that rule can be removed =
from the firewall.<BR>More likely you just would want it to send you an =
email or something.<BR>If you want to use it at =
all.<BR><BR>Cheers,<BR><BR>a<BR></FONT></P></DIV></BODY></HTML>
------_=_NextPart_001_01C8809D.3688CFDC--
