Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: sftp - Received message too long 1265200236

from [Darren Tucker] Network Security [Permanent Link]
Subject: Re: sftp - Received message too long 1265200236
Date: Tue, 08 Mar 2005 12:09:36 +1100
Mark Leisher wrote: 
OpenSSH 3.9p1 and OpenSSL 0.9.7e installed on all boxes.

I know, this has been addressed many times before, but it is still happening on our Solaris boxes.

Our Solaris 5.[89] systems with all shell rc files removed from /etc/ still respond with "Received message too long Kill (what 1265200236 turns out to be)" when sftp'ing to these machines.

This happens with a user account that is an empty directory and happens if the user account has bash, ksh, or tcsh as a shell. It doesn't happen if /bin/sh is the shell. Doing "ssh user@machine /bin/true" produces no output.

I suspect that you're missing a shared library such as libcrypto from the standard library search path, and that LD_LIBRARY_PATH is set OK in /bin/sh's startup files but not the ones of the other shells.

Try:
$ ssh yourserver /usr/local/bin/scp -v
and see what the entire error message is.

Also look at the Solaris crle(1) man page and see what it's set to on the server.

OpenSSH's configure should use the -R linker flag to override this so it should not be a problem however configure's behaviour can be changed with the --without-rpath option.

--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  sftp - Received message too long 1265200236, Mark Leisher
Next by Date:  OPENSSH Question, Salas, Jose L
Previous by Thread:  sftp - Received message too long 1265200236, Mark Leisher
Next by Thread:  Re: sftp - Received message too long 1265200236, Mark Leisher
Indexes:  [Date] [Thread] [Top] [All Lists]