Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

SSH & SSHD config files

6 views
Skip to first unread message

Jeremy Douglas

unread,
Jun 16, 1999, 3:00:00 AM6/16/99
to dar...@yhaoo.com
I have ssh 1.2.27-5i running on Linux. I am trying to log in through
ssh as a user and I am getting this message: "Privileged ports can only
be forwarded by root", what does this mean and how can I fix it.
my ssh.config file looks like this:

Host *
ForwardAgent no
ForwardX11 no
RhostsAuthentication no
RhostsRSAAuthentication yes
RSAAuthentication no
TISAuthentication no
PasswordAuthentication yes
FallBackToRsh no
UseRsh no
BatchMode no
StrictHostKeyChecking no
IdentityFile ~/.ssh/identity
Port 22
Cipher idea
EscapeChar ~
Compression no
HostName 192.168.1.12
KeepAlive yes
NumberOfPasswordPrompts 5
#FTP
LocalForward port host:port
#Telnet
LocalForward port host:port

# post and host:post are filled in with personnal information

and my sshd.config file looks like this:

Port 22
ListenAddress 192.168.1.12
HostKey /etc/ssh/ssh_host_key
RandomSeed /etc/ssh/ssh_random_seed
ServerKeyBits 512
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin no
IgnoreRhosts no
StrictModes yes
QuietMode no
X11Forwarding no
X11DisplayOffset 10
FascistLogging no
PrintMotd yes
KeepAlive yes
SyslogFacility DAEMON
RhostsAuthentication no
RhostsRSAAuthentication yes
RSAAuthentication yes
PasswordAuthentication yes
PermitEmptyPasswords yes
UseLogin no
# CheckMail no
PidFile /var/run/sshd.pid
AllowHosts myIP
# DenyHosts lowsecurity.theirs.com *.evil.org evil.org
# Umask 022
# SilentDeny yes
#DenyHosts myIP

What changes do I have to make to my config files so that I can have
people login through ssh without having keys passing back and forth
between client and server. All I want is to have it ask ofr
authorization when someone tries to telnet or ftp in or type in ssh -l
username hostname or ssh hostname.

Neil Rickert

unread,
Jun 16, 1999, 3:00:00 AM6/16/99
to
Jeremy Douglas <dar...@yahoo.com> writes:

>I have ssh 1.2.27-5i running on Linux. I am trying to log in through
>ssh as a user and I am getting this message: "Privileged ports can only
>be forwarded by root", what does this mean and how can I fix it.

I guess you don't do it.

This "personnal information" is the cause of your problems. FTP and
TELNET both listen on privileged ports. Only root on your system can
forward those ports.


Jeremy Douglas

unread,
Jun 16, 1999, 3:00:00 AM6/16/99
to
I have ssh 1.2.27-5i running on Linux. I am trying to log in through
ssh as a user and I am getting this message: "Privileged ports can only
be forwarded by root", what does this mean and how can I fix it.

and my sshd.config file looks like this:

Port 22
ListenAddress 192.168.1.12
HostKey /etc/ssh/ssh_host_key
RandomSeed /etc/ssh/ssh_random_seed
ServerKeyBits 512
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin no
IgnoreRhosts no
StrictModes yes
QuietMode no
X11Forwarding no
X11DisplayOffset 10
FascistLogging no
PrintMotd yes
KeepAlive yes
SyslogFacility DAEMON

RhostsAuthentication no
RhostsRSAAuthentication yes

0 new messages