sshd & nmap

From: xian@niva.hu
Date: Tue Jun 01 2004 - 12:50:37 EDT

• Next message: bbb bb: "VNCserver display SUN CDE to PC"
• Previous message: Geoff Lane: "Dell GX260 / x86 Sol 9 / NIC very slow"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Managers,

today I tried to run nessus on my Sol9 box, and some users were logged off
during the test. I found that the port-scan made by nessus caused that.

I tried to identify the problematic port. Using nmap I found that nmap-ing
port 6010 (sometimes) causes some users to get disconnected.

Here was my command: nmap home -p 6000-6010

Searching the web I found that 6010 is an X11Forwarded port of sshd. Here is
sshd log:

Jun 1 12:48:32 home sshd[27501]: [ID 800047 auth.error] error: accept:
Software caused connection abort

Jun 1 12:49:04 rozi sshd[27501]: [ID 800047 auth.error] error: channel 4:
chan_shutdown_read: shutdown() failed for fd14 [i1 o16]: Transport endpoint is
not connected

I need X11Forward, so I don't want to turn it off.

Info:
sshd version Sun_SSH_1.0
SunOS home 5.9 Generic_112233-12 sun4u sparc SUNW,Sun-Fire-280R

How can I solve this issue? Any ideas?

Krisztian
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: bbb bb: "VNCserver display SUN CDE to PC"
• Previous message: Geoff Lane: "Dell GX260 / x86 Sol 9 / NIC very slow"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:28:45 EDT