[Zim]

I'm trying to enable sshd on a port other than 22, preferably one well above 1000, and thus not as often firewalled.

I editted /etc/sshd_config and tried several combinations of Port declarations (not knowing exactly how to do multiple ports, but seeing the statement that it was permissible)

a) Port 22
Port 8022

b) Port 8022

c) port 22, 8022

and then restarted after each (how can I relaunch sshd without a restart?)

Anyway I always got connection refused for port 8022, and I was sure to add it to my ipfw rules everywhere that I already had port 22 also defined.

No router (I took it out til I had things working).

Do I need to do anything in /etc/services, or /etc/xident.d (going from memory, but may have the 2nd name wrong)?

Thanks,
Mike

[kvm_mkdb]

Originally posted by Zim:
Do I need to do anything in /etc/services, or /etc/xident.d (going from memory, but may have the 2nd name wrong)?

Yes, on Panther sshd is started by xinetd by default; add a file named something like 'myssh' in /etc/xinetd.d/ , with following content:

Code:
service myssh
{
        disable = no
        port = 8022
        type = UNLISTED
        socket_type     = stream
        wait            = no
        user            = root
        server          = /usr/libexec/sshd-keygen-wrapper
        server_args     = -i
        groups          = yes
        flags           = REUSE IPv6
        session_create  = yes
}

and then type: sudo killall -HUP xinetd

hth

[Zim]

Thanks!

Might have done more than was needed, but here was my solution

in /etc/services

# 7022-7029 Unassigned
myssh 7022/udp # SSH Remote Login Protocol
myssh 7022/tcp # SSH Remote Login Protocol

in /etc/xinetd.d/myssh

service myssh
{
disable = no
socket_type = stream
wait = no
user = root
port = 7022
server = /usr/libexec/sshd-keygen-wrapper
server_args = -i -p7022
groups = yes
flags = REUSE IPv6
session_create = yes
}

and in /etc/sshd_config

Port 7022