On 10/25/2011 05:28 AM, Abu Attar Musharih wrote:
> Above is another important point. I can not ping the machine.
> I am wondering how they do that. What port do they close?
> Thanks,
> AA
Ping uses ICMP packets. I don't think it uses a port; at least, there's
no CLI option to change it.
--
use
Am 25.10.2011 14:28, schrieb Abu Attar Musharih:
> On Sat, Oct 22, 2011 at 7:12 PM, Andras Simon wrote:
>
>> Can you ping the machine? If yes, then are there traces in the logs
>> that show the connection attempts? (You can make iptables log those.)
>
> Above is another important point. I can
On Tuesday 25 October 2011 13:28:05 Abu Attar Musharih wrote:
> On Sat, Oct 22, 2011 at 7:12 PM, Andras Simon wrote:
> > Can you ping the machine? If yes, then are there traces in the logs
> > that show the connection attempts? (You can make iptables log those.)
>
> Above is another important poi
On Sat, Oct 22, 2011 at 7:12 PM, Andras Simon wrote:
> Can you ping the machine? If yes, then are there traces in the logs
> that show the connection attempts? (You can make iptables log those.)
Above is another important point. I can not ping the machine.
I am wondering how they do that. What p
On Mon, 2011-10-24 at 18:31 +0200, Reindl Harald wrote:
> for portscans allow only 120 connections from the same ip per second
> makes it really hard do a full port-scan because it longs forever and
> aditionally webservers are proctected against a single dos-attack
120 per second seems overly gen
Am 24.10.2011 18:12, schrieb Tim:
> On Sun, 2011-10-23 at 12:12 +0200, Reindl Harald wrote:
>> put sshd on port 10022 and all is well
>>
>> this has the additional benefit to get rid of the most
>> idiots trying password-attacks all day long
>
> Though it won't stop the more determined ones.
On Mon, Oct 24, 2011 at 18:12, Tim wrote:
> If you have a (potentially) vulnerable server exposed, using something
> like fail2ban (if I remembered the name correctly) can be a good idea.
> It allows a limited number of attempts from an IP, then temporarily
> blacklists that IP. A hacker would ha
On Sun, 2011-10-23 at 12:12 +0200, Reindl Harald wrote:
> put sshd on port 10022 and all is well
>
> this has the additional benefit to get rid of the most
> idiots trying password-attacks all day long
Though it won't stop the more determined ones. Like those who scan for
all open ports, and th
Am 24.10.2011 05:07, schrieb Marko Vojinovic:
> On Monday 24 October 2011 03:35:12 Ed Greshko wrote:
>> On 10/24/2011 10:18 AM, Marko Vojinovic wrote:
>>> P.S. Sorry folks, just couldn't resist... :-D No hard feelings, Ed! :-)
>>
>> No hard feelings But.
>>
>> ISP ≠ Employer
>
> Oh, so i
Am 23.10.2011 14:10, schrieb suvayu ali:
> I know about ~/.ssh/config and I use it. Logging in to the remote nodes
> is not the issue in my case. I use kerberos to authenticate anyway. The
> issue is when I want to access my machine from those remote nodes, I
> have to copy the section relevant t
On 10/23/2011 06:04 AM, Reindl Harald wrote:
>
>
> Am 23.10.2011 12:58, schrieb suvayu ali:
>
>> I am no expert, I just said what worked for me in the past. I ssh into
>> many systems everyday so changing to non-standard ports is
>> inconvenient
>
> where is there any single problem if you can
Am 23.10.2011 13:09, schrieb suvayu ali:
On Sun, Oct 23, 2011 at 13:04, Reindl Harald wrote:
> Am 23.10.2011 12:58, schrieb suvayu ali:
>
>> I am no expert, I just said what worked for me in the past. I ssh into
>> many systems everyday so changing to non-standard ports is
>> inconvenient
> wh
Am 23.10.2011 12:58, schrieb suvayu ali:
> I am no expert, I just said what worked for me in the past. I ssh into
> many systems everyday so changing to non-standard ports is
> inconvenient
where is there any single problem if you can read manuals?
you have to specify the port only once per cli
Am 23.10.2011 12:20, schrieb suvayu ali:
On Sun, Oct 23, 2011 at 12:12, Reindl Harald wrote:
> mh and hwo do you start "nc" if you can not connect to the machine and
> if you drive to the machine doing this manually what after internet
> is shortly down - driving all the time around?
>
I didn'
Am 23.10.2011 12:09, schrieb suvayu ali:
> Hi Abu Attar,
>
> On Sun, Oct 23, 2011 at 11:09, Abu Attar Musharih
> wrote:
>> The customer service said that ssh is not allowed. So, what to do
>> then? I badly need a server with global IP for experimenting grid
>> computing.
>
> To be absolutely
Am 23.10.2011 11:09, schrieb Abu Attar Musharih:
> The customer service said that ssh is not allowed. So, what to do
> then? I badly need a server with global IP for experimenting grid
> computing
[root@srv-rhsoft:~]$ cat /etc/ssh/sshd_config
Port 22
Port 10022
Protocol 2
..
if we are spae
On Monday 24 October 2011 12:15:03 Abu Attar Musharih wrote:
> I tried INCOMING ssh several times and check file /var/log/secure
> No entries related to login attempt found.
> Now, it becomes even worse. Yesterday I could do OUTGOING ssh, but not
> anymore. The following site is inaccessible
>
>
On Mon, Oct 24, 2011 at 4:35 PM, suvayu ali wrote:
> Can you see entries corresponding to each login attempt in /var/log/secure?
I tried INCOMING ssh several times and check file /var/log/secure
No entries related to login attempt found.
Now, it becomes even worse. Yesterday I could do OUTGOING
On Mon, Oct 24, 2011 at 03:48, Abu Attar Musharih
wrote:
>> 4. if this last step shows you that connection is not happening, you
>> can try looking at your router settings. there should be a way to
>> port forward your ssh connections to port 22 of the machine you want
>> to use as a server.
On Monday 24 October 2011 04:07:35 Marko Vojinovic wrote:
> P.S. For the OP: in case you missed that previous thread I reffered to,
> here's the link:
>
>http://lists.fedoraproject.org/pipermail/users/2011-October/406090.html
It appears that the thread was lousy threaded, here are the remaini
On Monday 24 October 2011 03:35:12 Ed Greshko wrote:
> On 10/24/2011 10:18 AM, Marko Vojinovic wrote:
> > P.S. Sorry folks, just couldn't resist... :-D No hard feelings, Ed! :-)
>
> No hard feelings But.
>
> ISP ≠ Employer
Oh, so if they are paying you, it's unethical to break the firewa
On Mon, Oct 24, 2011 at 11:18 AM, Marko Vojinovic wrote:
>>
>> Thus my suggestion to use a port of a well known service that is allowed.
>
> Oh, be careful Ed, :-)
>
> I got bashed quite a lot for suggesting a similar thing about openvpn couple
> of threads ago... I learned that the proper, politi
On 10/24/2011 10:18 AM, Marko Vojinovic wrote:
> P.S. Sorry folks, just couldn't resist... :-D No hard feelings, Ed! :-)
No hard feelings But.
ISP ≠ Employer
--
Even if you do learn to speak correct English, whom are you going to
speak it to? -- Clarence Darrow
--
users mailing list
us
On Mon, Oct 24, 2011 at 12:30 AM, Rick Sewill wrote:
> Question to the OP please. Are you also behind your own router?
> Does it run NAT? If yes, is it configured to forward an ssh connection,
> from the Internet, to your local host?
No, I am not. I do not have any router. My laptop is connecti
On Monday 24 October 2011 02:18:39 Ed Greshko wrote:
> On 10/24/2011 02:04 AM, Joe Zeff wrote:
> > On 10/23/2011 02:09 AM, Abu Attar Musharih wrote:
> >> The customer service said that ssh is not allowed. So, what to do
> >> then? I badly need a server with global IP for experimenting grid
> >> co
> doesn't have to drive there, he can always use ssh. The OP never said
> ssh to some machine outside is not working, so its a fair assumption
> that he can.
Yes, you are absolutely right. ssh to other outsides nodes with global
ip works well.
Thanks,
AA
--
users mailing list
users@lists.fedorapr
On Sun, Oct 23, 2011 at 7:09 PM, suvayu ali wrote:
> Hi Abu Attar,
>
> On Sun, Oct 23, 2011 at 11:09, Abu Attar Musharih
> wrote:
>> The customer service said that ssh is not allowed. So, what to do
>> then? I badly need a server with global IP for experimenting grid
>> computing.
>
> To be abso
On 10/24/2011 02:04 AM, Joe Zeff wrote:
> On 10/23/2011 02:09 AM, Abu Attar Musharih wrote:
>> The customer service said that ssh is not allowed. So, what to do
>> then? I badly need a server with global IP for experimenting grid
>> computing.
> Configure ssh to use a non-standard port such as 600
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/23/2011 03:37 PM, Joe Zeff wrote:
> On 10/23/2011 01:24 PM, Mikkel L. Ellertson wrote:
>> If you are using your own router, configure it to forward an
>> incoming non-standard port to port 25 on your server. But if you are
>> using a router with
On 10/23/2011 01:24 PM, Mikkel L. Ellertson wrote:
> If you are using your own router, configure it to forward an
> incoming non-standard port to port 25 on your server. But if you are
> using a router with NAT, you problem might be that you did not
> configure the router to forward incoming port 2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/23/2011 01:04 PM, Joe Zeff wrote:
> On 10/23/2011 02:09 AM, Abu Attar Musharih wrote:
>> The customer service said that ssh is not allowed. So, what to do
>> then? I badly need a server with global IP for experimenting grid
>> computing.
>
> Co
On 10/23/2011 02:09 AM, Abu Attar Musharih wrote:
> The customer service said that ssh is not allowed. So, what to do
> then? I badly need a server with global IP for experimenting grid
> computing.
Configure ssh to use a non-standard port such as 6002.
--
users mailing list
users@lists.fedorapr
On Sunday, October 23, 2011 05:14:01 AM Harish Pillay wrote:
> > On 10/23/2011 05:09 PM, Abu Attar Musharih wrote:
> >> The customer service said that ssh is not allowed. So, what to do
> >> then? I badly need a server with global IP for experimenting grid
>
> You can do the following:
> a) edit
On Sun, Oct 23, 2011 at 14:24, Reindl Harald wrote:
>
> and if the ISP of the OP is blocking incoming port 22 he has
> no other solution - so what baout are we speaking here?
>
That was my intention of checking with nc, whether port 22 is indeed
being blocked if not whether it is being properly f
On Sun, Oct 23, 2011 at 13:18, Reindl Harald wrote:
>
>
> Am 23.10.2011 13:09, schrieb suvayu ali:
>
> On Sun, Oct 23, 2011 at 13:04, Reindl Harald wrote:
>
>> Am 23.10.2011 12:58, schrieb suvayu ali:
>>
>>> I am no expert, I just said what worked for me in the past. I ssh into
>>> many systems e
On Sun, Oct 23, 2011 at 13:04, Reindl Harald wrote:
> Am 23.10.2011 12:58, schrieb suvayu ali:
>
>> I am no expert, I just said what worked for me in the past. I ssh into
>> many systems everyday so changing to non-standard ports is
>> inconvenient
>
> where is there any single problem if you can
On Sun, Oct 23, 2011 at 12:47, Reindl Harald wrote:
> Am 23.10.2011 12:20, schrieb suvayu ali:
>
> On Sun, Oct 23, 2011 at 12:12, Reindl Harald wrote:
>
>> mh and hwo do you start "nc" if you can not connect to the machine and
>> if you drive to the machine doing this manually what after internet
On Sun, Oct 23, 2011 at 12:42, Reindl Harald wrote:
>
>
> Am 23.10.2011 12:20, schrieb suvayu ali:
>
> On Sun, Oct 23, 2011 at 12:12, Reindl Harald wrote:
>
>> mh and hwo do you start "nc" if you can not connect to the machine and
>> if you drive to the machine doing this manually what after inte
On Sun, Oct 23, 2011 at 12:12, Reindl Harald wrote:
> mh and hwo do you start "nc" if you can not connect to the machine and
> if you drive to the machine doing this manually what after internet
> is shortly down - driving all the time around?
>
I didn't say that machine, I said a machine, as in
> On 10/23/2011 05:09 PM, Abu Attar Musharih wrote:
>> The customer service said that ssh is not allowed. So, what to do
>> then? I badly need a server with global IP for experimenting grid
You can do the following:
a) edit /etc/ssh/sshd_config and change the default port 22 to a
higher port
Hi Abu Attar,
On Sun, Oct 23, 2011 at 11:09, Abu Attar Musharih
wrote:
> The customer service said that ssh is not allowed. So, what to do
> then? I badly need a server with global IP for experimenting grid
> computing.
To be absolutely sure you can try the following.
1. confirm your global ip
On 10/23/2011 05:09 PM, Abu Attar Musharih wrote:
> The customer service said that ssh is not allowed. So, what to do
> then? I badly need a server with global IP for experimenting grid
> computing.
If they don't allow ssh what service do they allow? If, for example,
they allow you to run a pop
>> And then one sees... ssh: connect to host 120.166.xx.xxx
>>
>> Does anyone see a difference between 165 and 166?
>>
> I missed that - I think you nailed it. (Time for coffee!)
>
My apology, that was a typo. I have tried several times for different
global ip address every time I reactivated th
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/22/2011 07:28 AM, Ed Greshko wrote:
> On 10/22/2011 08:17 PM, Mikkel L. Ellertson wrote:
>> On 10/22/2011 04:31 AM, Abu Attar Musharih wrote:
>>> Dear List,
>>
>>> My internet connection is via mobile broadband. The ifconfig lists
>>> the ppp0 w
On 10/22/2011 08:17 PM, Mikkel L. Ellertson wrote:
> On 10/22/2011 04:31 AM, Abu Attar Musharih wrote:
> > Dear List,
>
> > My internet connection is via mobile broadband. The ifconfig lists
> > the ppp0 with IP address,
>
>
> > ppp0 Link encap:Point-to-Point Protocol
> > inet addr:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 10/22/2011 04:31 AM, Abu Attar Musharih wrote:
> Dear List,
>
> My internet connection is via mobile broadband. The ifconfig lists
> the ppp0 with IP address,
>
>
> ppp0 Link encap:Point-to-Point Protocol
> inet addr:120.165.xx.xx
Hi,
Could be several reasons.
I presume that you succeede in ssh-ing to that machine, from another client
(i.e. The machine does accept incomoing ssh-request)
Perhaps firewall settings?
Or accept/deny configurations?
- Oorspronkelijk bericht -
Van: Abu Attar Musharih [mailto:abuattar.m
2011/10/22, Abu Attar Musharih :
> Dear List,
>
> My internet connection is via mobile broadband. The ifconfig lists
> the ppp0 with IP address,
>
>
> ppp0 Link encap:Point-to-Point Protocol
> inet addr:120.165.xx.xxx P-t-P:10.64.64.64 Mask:255.255.255.255
> UP POINTOPOI
On Sat, Oct 22, 2011 at 11:31 AM, Abu Attar Musharih
wrote:
> I tried to remote login (using ssh) to this IP address from another
> machine but failed.
>
> The following message appears,
>
> ssh: connect to host 120.166.xx.xxx port 22: Connection timed out
>
>
> Editing /etc/sysconfig/iptables an
49 matches
Mail list logo
