Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

ssh connect problems (ubuntu feisty client, ubuntu dapper server)

from [Juergen Sauer] Network Security [Permanent Link]
Subject: ssh connect problems (ubuntu feisty client, ubuntu dapper server)
Date: Mon, 1 Oct 2007 12:11:17 +0200 
Hi!
we stumbled into a nasty problem.

After feisty-upgrade the ssh connect to a dapper server is becoming 
unstable.

Sometimes it works - sometimes not. FAQ and other resources are not 
helpful here.

Example of working try:

jojo@pc2:~$ ssh server
Last login: Thu Sep 20 12:12:00 2007 from pc2.s.automatix.de on pts/6
Linux server 2.6.17.13-ax #1 SMP Tue Sep 19 16:17:15 CEST 2006 i686 > 

GNU/Linux

       Unbuntu Dapper 6.06 Release + Universe + Multiverse
You have new mail.
jojo@server:~$ date
Mo  1 Okt 12:02:14 CEST 2007
jojo@server:~$ logout
Connection to server closed.
jojo@pc2:~$ ssh server

... long time nothing happens. Ctrl-C

After that I tried out a debug output:

jojo@pc2:~$ date
Mo 1. Okt 12:04:45 CEST 2007
jojo@pc2:~$ ssh -vvvv server
OpenSSH_4.3p2 Debian-8ubuntu1, OpenSSL 0.9.8c 05 Sep 2006
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to server [192.168.11.1] port 22.
debug2: fd 3 setting O_NONBLOCK
debug1: fd 3 clearing O_NONBLOCK
debug1: Connection established.
debug1: identity file /home/jojo/.ssh/identity type -1
debug1: identity file /home/jojo/.ssh/id_rsa type -1
debug3: Not a RSA1 key file /home/jojo/.ssh/id_dsa.
debug2: key_type_from_name: unknown key type '-----BEGIN'
debug3: key_read: missing keytype
debug3: key_read: missing whitespace
repeaten many times<
debug2: key_type_from_name: unknown key type '-----END'
debug3: key_read: missing keytype
debug1: identity file /home/jojo/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version 
OpenSSH_4.2p1 Debian-7ubuntu3.1
debug1: match: OpenSSH_4.2p1 Debian-7ubuntu3.1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.3p2 Debian-8ubuntu1
debug2: fd 3 setting O_NONBLOCK
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: 
diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:  
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit:  
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit:  
diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug2: dh_gen_key: priv key bits set: 129/256
debug2: bits set: 548/1024
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename /home/jojo/.ssh/known_hosts
debug3: check_host_in_hostfile: match line 3
debug3: check_host_in_hostfile: filename /home/jojo/.ssh/known_hosts
debug3: check_host_in_hostfile: match line 37
debug1: Host 'server' is known and matches the RSA host key.
debug1: Found key in /home/jojo/.ssh/known_hosts:3
debug2: bits set: 521/1024
debug1: ssh_rsa_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received

 
and nothing more hapens.
I presume, ssh in feisty is broken.

Can anyone confirm this ?

TIA
J. Sauer
-- 
JÃrgen Sauer - automatiX GmbH, +49-4209-4699, juergen.sauer@automatix.de
Das Linux Systemhaus - Service - Support - Server - LÃsungen
GeschÃftsfÃhrer (Managing Director): JÃrgen Sauer, 
Gerichtstand: Amtsgericht Walsrode â HRB 120986
Ust-Id: DE191468481 â St.Nr.: 36/201/14198

Attachment: pgplsvWLpeCEY.pgp
Description: PGP signature

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • ssh connect problems (ubuntu feisty client, ubuntu dapper server), Juergen Sauer <=
Previous by Date:  Re: ssh without encryption (authentification only)?, Peter Daum
Next by Date:  ssh works on one way, remote X can't start locally, Stephen Liu
Previous by Thread:  Re: ssh without encryption (authentification only)?, Tristan Schmelcher
Next by Thread:  ssh works on one way, remote X can't start locally, Stephen Liu
Indexes:  [Date] [Thread] [Top] [All Lists]