sshd failure
in [Linux Help]
|
From: jdanskinner on 22 Feb 2007 19:11 I'm using SuSE 8.1 as server. All was working properly this noon. Sometime this afternoon attempted logins from remote or loop back from console cause hang. I found nothing helpful in the logs but I did run sshd with -d -d -d startup. I got the following log 1752: debug1: sshd version OpenSSH_3.4p1 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key. 1752: debug1: read PEM private key done: type RSA 1752: debug1: private host key: #0 type 1 RSA 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key. 1752: debug1: read PEM private key done: type DSA 1752: debug1: private host key: #1 type 2 DSA 1752: Disabling protocol version 1. Could not load host key 1752: debug1: Bind to port 22 on ::. 1752: Server listening on :: port 22. 1752: debug1: Server will not fork when running in debugging mode. 1752: Connection from ::ffff:24.159.192.106 port 2484 1752: debug1: Client protocol version 2.0; client software version OpenSSH_3.4p1 1752: debug1: match: OpenSSH_3.4p1 pat OpenSSH* 1752: Enabling compatibility mode for protocol 2.0 1752: debug1: Local version string SSH-2.0-OpenSSH_3.4p1 1752: debug2: Network child is on pid 1753 1752: debug3: preauth child monitor started 1752: debug3: mm_request_receive entering 1753: debug3: privsep user:group 71:65 1753: debug1: list_hostkey_types: ssh-rsa,ssh-dss 1753: debug3: mm_request_send entering: type 20 1752: debug3: monitor_read: checking request 20 1753: debug3: mm_ssh_gssapi_server_ctx: waiting for MONITOR_ANS_GSSSETUP 1753: debug3: mm_request_receive_expect entering: type 21 1753: debug3: mm_request_receive entering I assume it must be a corrupt file someplace, but having no luck finding it. I can ssh from the server to another server and I can telnet to the server in questions. Any suggestions appreciated. Regards...Dan.
From: trryhend on 22 Feb 2007 21:52 On Feb 22, 6:11 pm, "jdanskinner" <JDanSkin...(a)JDanSkinner.com> wrote: > I'm using SuSE 8.1 as server. > > All was working properly this noon. > Sometime this afternoon attempted logins from > remote or loop back from console cause hang. > > I found nothing helpful in the logs but I did run > sshd with -d -d -d startup. > > I got the following log > > 1752: debug1: sshd version OpenSSH_3.4p1 > 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key. > 1752: debug1: read PEM private key done: type RSA > 1752: debug1: private host key: #0 type 1 RSA > 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key. > 1752: debug1: read PEM private key done: type DSA > 1752: debug1: private host key: #1 type 2 DSA > 1752: Disabling protocol version 1. Could not load host key > 1752: debug1: Bind to port 22 on ::. > 1752: Server listening on :: port 22. > 1752: debug1: Server will not fork when running in debugging mode. > 1752: Connection from ::ffff:24.159.192.106 port 2484 > 1752: debug1: Client protocol version 2.0; client software version > OpenSSH_3.4p1 > 1752: debug1: match: OpenSSH_3.4p1 pat OpenSSH* > 1752: Enabling compatibility mode for protocol 2.0 > 1752: debug1: Local version string SSH-2.0-OpenSSH_3.4p1 > 1752: debug2: Network child is on pid 1753 > 1752: debug3: preauth child monitor started > 1752: debug3: mm_request_receive entering > 1753: debug3: privsep user:group 71:65 > 1753: debug1: list_hostkey_types: ssh-rsa,ssh-dss > 1753: debug3: mm_request_send entering: type 20 > 1752: debug3: monitor_read: checking request 20 > 1753: debug3: mm_ssh_gssapi_server_ctx: waiting for > MONITOR_ANS_GSSSETUP > 1753: debug3: mm_request_receive_expect entering: type 21 > 1753: debug3: mm_request_receive entering > > I assume it must be a corrupt file someplace, but having no luck > finding > it. > > I can ssh from the server to another server and > I can telnet to the server in questions. > > Any suggestions appreciated. > > Regards...Dan. Did someone change a NIC?
From: jdanskinner on 22 Feb 2007 22:54 On Feb 22, 8:52 pm, "trryh...(a)gmail.com" <trryh...(a)gmail.com> wrote: > On Feb 22, 6:11 pm, "jdanskinner" <JDanSkin...(a)JDanSkinner.com> wrote: > > > > > I'm using SuSE 8.1 as server. > > > All was working properly this noon. > > Sometime this afternoon attempted logins from > > remote or loop back from console cause hang. > > > I found nothing helpful in the logs but I did run > > sshd with -d -d -d startup. > > > I got the following log > > > 1752: debug1: sshd version OpenSSH_3.4p1 > > 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key. > > 1752: debug1: read PEM private key done: type RSA > > 1752: debug1: private host key: #0 type 1 RSA > > 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key. > > 1752: debug1: read PEM private key done: type DSA > > 1752: debug1: private host key: #1 type 2 DSA > > 1752: Disabling protocol version 1. Could not load host key > > 1752: debug1: Bind to port 22 on ::. > > 1752: Server listening on :: port 22. > > 1752: debug1: Server will not fork when running in debugging mode. > > 1752: Connection from ::ffff:24.159.192.106 port 2484 > > 1752: debug1: Client protocol version 2.0; client software version > > OpenSSH_3.4p1 > > 1752: debug1: match: OpenSSH_3.4p1 pat OpenSSH* > > 1752: Enabling compatibility mode for protocol 2.0 > > 1752: debug1: Local version string SSH-2.0-OpenSSH_3.4p1 > > 1752: debug2: Network child is on pid 1753 > > 1752: debug3: preauth child monitor started > > 1752: debug3: mm_request_receive entering > > 1753: debug3: privsep user:group 71:65 > > 1753: debug1: list_hostkey_types: ssh-rsa,ssh-dss > > 1753: debug3: mm_request_send entering: type 20 > > 1752: debug3: monitor_read: checking request 20 > > 1753: debug3: mm_ssh_gssapi_server_ctx: waiting for > > MONITOR_ANS_GSSSETUP > > 1753: debug3: mm_request_receive_expect entering: type 21 > > 1753: debug3: mm_request_receive entering > > > I assume it must be a corrupt file someplace, but having no luck > > finding > > it. > > > I can ssh from the server to another server and > > I can telnet to the server in questions. > > > Any suggestions appreciated. > > > Regards...Dan. > > Did someone change a NIC? On the server, no. No hardware or software changes for several weeks. Regards...Dan.
From: Sebastian Volke on 23 Feb 2007 03:27 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 jdanskinner said the following on 23.02.2007 01:11: | [...] | | I found nothing helpful in the logs but I did run | sshd with -d -d -d startup. | | I got the following log | | 1752: debug1: sshd version OpenSSH_3.4p1 | 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key. | 1752: debug1: read PEM private key done: type RSA | 1752: debug1: private host key: #0 type 1 RSA | 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key. | 1752: debug1: read PEM private key done: type DSA | 1752: debug1: private host key: #1 type 2 DSA | 1752: Disabling protocol version 1. Could not load host key | [...] These files, sshd is complaining about, /etc/ssh/ssh_host_rsa_key and /etc/ssh/ssh_host_dsa_key, do they exist? As far as I can read those logs, your sshd disables protocoll version 1 because he misses the host keys, i.e. the files named above. Now, if you try logging in using protocoll version 1, this may cause the hang, but I can't say that for sure. That's certainly not the problem, if your ssh-client uses protocoll 2. But, maybe creating the host keys, or at least one of them, solves the misbehaving. - -- *Sebastian Volke* registered Linux user #426550 mail address: echo ozslxhmfw_gfxyn(a)lrc.sjy | perl -pe 'y/a-z/v-za-w/' -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFF3qViTVzZ9whcz3sRAgieAJ4jnNqMAtnSmWOpkuL8UqNujfB8SgCgldaS 9VukjaPALVm5ROWWpROo2QU= =UYLD -----END PGP SIGNATURE-----
From: J.O. Aho on 23 Feb 2007 04:00 Sebastian Volke wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > jdanskinner said the following on 23.02.2007 01:11: > | [...] > | > | I found nothing helpful in the logs but I did run > | sshd with -d -d -d startup. > | > | I got the following log > | > | 1752: debug1: sshd version OpenSSH_3.4p1 > | 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_rsa_key. > | 1752: debug1: read PEM private key done: type RSA > | 1752: debug1: private host key: #0 type 1 RSA > | 1752: debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key. > | 1752: debug1: read PEM private key done: type DSA > | 1752: debug1: private host key: #1 type 2 DSA > | 1752: Disabling protocol version 1. Could not load host key > | [...] > > These files, sshd is complaining about, /etc/ssh/ssh_host_rsa_key and > /etc/ssh/ssh_host_dsa_key, do they exist? > As far as I can read those logs, your sshd disables protocoll version 1 > because he misses the host keys, i.e. the files named above. > Now, if you try logging in using protocoll version 1, this may cause the > hang, but I can't say that for sure. That's certainly not the problem, > if your ssh-client uses protocoll 2. > But, maybe creating the host keys, or at least one of them, solves the > misbehaving. There should be noted that it's not advised to use protocol 1 at all, as it's an easy way in for people who aren't supposed to have access on your system. Always disable protocol 1 on ssh and use only protocol 2 #from /etc/ssh/sshd_config Protocol 2 -- //Aho
|
Next
|
Last
Pages: 1 2 Prev: disagrees about version os symbol struct_module Next: Which process is writing to disk? |