1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Locked out from SSH!

Discussion in 'Plesk for Linux - 8.x and Older' started by CLovell, Nov 13, 2006.

  1. CLovell

    CLovell Guest

    He everyone,

    Hope someone's able to help as I may be in a bit of a quandry. I've recently used lvalics' lovely new box security script and all was running nicely until logging on this morning and finding all my SSH connections being refused!

    I had used the option in the script to change the SSH port to a new one and limit to SSH-2 connections. Remote port-scanning is not showing the new port that I had specified. I have limited telnet access, ftp and the Plesk control panel, but otherwise I'm out!

    If anyone could offer some advice or help I would be most extremely grateful - I'm a little new on Linux so any help would be extremely welcome.

    Thanks again!
  2. CLovell

    CLovell Guest

    Ok, I can still upload scripts via ftp and run them via crontab. Trying to work out how I can either:

    a) remove the old security installations made by the first script
    b) reset ssh so I can login

    Any chance someone would know a means of doing this please?
  3. lvalics

    lvalics Silver Pleskian Plesk Guru

    Jun 20, 2003
    Likes Received:
    If you can use PLESK, then you can try from domain where is allowed SSH to enter with SSH Term and login with that Java Applet.
    That will run as localhost and should work.
    Then you can stop firewall and enter with SSH.

    Also be sure that in /etc/apf/allow_hosts.rules you add your IP to have full access.

    If all this is done and you still cannot do anything, ask for a reboot from hosting company. Also it is possibble to be hacked and hacker changed SSH port. Try to see if something is running what can be SSH.

    Hope this help.
  4. CLovell

    CLovell Guest

    Hi Ivalics, thanks for replying.

    Plesk's SSH shell gives me 'Connection Refused: connect'. I'm getting the worrying idea that the SSH service has stopped somehow. I'm wondering if there is a method of restarting it via telnet?

    RKHunter & Chrootkit reports are coming up ok, but I'm enquiring with the hosts to see about getting something done.

    Thanks again
  5. CLovell

    CLovell Guest

    Hmm, looks like SSH just won't open up that alternative port the script asks for. Thankfully the hosts were very nice about it and didn't charge to reset it.
  6. wagnerch

    wagnerch Guest

    Most hosts provide console access, typically in LILO/GRUB you map the console and a serial device and they provide a terminal server that connects to the serial device.

    If your host doesn't have one, then you are at their mercy. I would definately recommend (in the future) using a host that provides console access, remote hard reboot, recovery capability (boot server into a "recovery" kernel), and re-imaging capability.

    At the very least you need to have remote console access.