You are not logged in.

Pages: 1

#1 2015-04-07 09:28:11

produnis
Member
From: Germany
Registered: 2014-09-29
Posts: 50

cannot ssh to kodi-box

Hi there,
I have a PivosXios-DS-M3 XBMC-Box, wich run xbmc12 until yesterday.
All my desktops run Archlinux.

Yesterday, I did a fresh install of tofu-linux to the Pivos-box (Kodi 14.1).

Thus, on my arch machines, I needed to delete the old entries of the Pivos-box in   ~./ssh/known_hosts.

While "everything else" works, e.g. browsing to the Pivos IP-Webpage, connecting to the box via FTP and such, I am not able to log in via ssh anymore.

My Pivos-box has IP    192.168.0.150    and this is what I get:

ssh root@192.168.0.150
Connection closed by 192.168.0.150
[11:21:38] produnis@hoerspiel:~$ cd .ssh
[11:22:14] produnis@hoerspiel:~/.ssh$ ssh -vvv root@192.168.0.150
OpenSSH_6.8p1, OpenSSL 1.0.2a 19 Mar 2015
debug1: Reading configuration data /home/produnis/.ssh/config
debug1: /home/produnis/.ssh/config line 69: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to 192.168.0.150 [192.168.0.150] port 22.
debug1: Connection established.
debug1: identity file /home/produnis/.ssh/id_rsa type 1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/produnis/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.8
debug1: Remote protocol version 2.0, remote software version dropbear_2014.66
debug1: no match: dropbear_2014.66
debug2: fd 3 setting O_NONBLOCK
debug3: hostkeys_foreach: reading file "/home/produnis/.ssh/known_hosts"
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ssh-rsa-cert-v00@openssh.com,ssh-dss-cert-v00@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
debug2: kex_parse_kexinit: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5-etm@openssh.com,hmac-ripemd160-etm@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5-etm@openssh.com,hmac-ripemd160-etm@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,hmac-md5,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: kex_parse_kexinit: curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2-nistp384,ecdh-sha2-nistp256,diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,kexguess2@matt.ucc.asn.au
debug2: kex_parse_kexinit: ecdsa-sha2-nistp521,ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes128-ctr,3des-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes256-cbc,twofish256-cbc,twofish-cbc,twofish128-cbc,blowfish-cbc
debug2: kex_parse_kexinit: aes128-ctr,3des-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes256-cbc,twofish256-cbc,twofish-cbc,twofish128-cbc,blowfish-cbc
debug2: kex_parse_kexinit: hmac-sha2-256,hmac-sha2-512,hmac-sha1-96,hmac-sha1,hmac-md5
debug2: kex_parse_kexinit: hmac-sha2-256,hmac-sha2-512,hmac-sha1-96,hmac-sha1,hmac-md5
debug2: kex_parse_kexinit: zlib,zlib@openssh.com,none
debug2: kex_parse_kexinit: zlib,zlib@openssh.com,none
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug1: kex: server->client aes128-ctr hmac-sha2-256 none
debug1: kex: client->server aes128-ctr hmac-sha2-256 none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
Connection closed by 192.168.0.150
[11:23:28] produnis@hoerspiel:~/.ssh$ ls -la
insgesamt 52
drwx------  2 produnis users 4096  6. Apr 22:36 .
drwx------ 18 produnis users 4096  7. Apr 11:21 ..
-rw-------  1 produnis users 1586 12. Mär 22:19 authorized_keys
-rw-------  1 produnis users  672 12. Mär 22:19 authorized_keys2
-rw-------  1 produnis users 3243  2. Apr 12:55 backupkey_rsa
-rw-r--r--  1 produnis users  744  2. Apr 12:55 backupkey_rsa.pub
-rw-r--r--  1 produnis users 1278 12. Mär 22:19 config
-rw-------  1 produnis users 1766 12. Mär 22:19 hoerspiel_rsa
-rw-r--r--  1 produnis users  400 12. Mär 22:19 hoerspiel_rsa.pub
-rw-------  1 produnis users 1766 12. Mär 22:19 id_rsa
-rw-r--r--  1 produnis users  400 12. Mär 22:19 id_rsa.pub
-rw-------  1 produnis users 4045  7. Apr 00:13 known_hosts
-rw-------  1 produnis users 3870 12. Mär 22:19 known_hosts.old

Btw: ssh-connections to all other machines I tested work well! It's just the "new" Kodi-box refusing me on any arch desktop...

Now, I installed a Firefox-Addon, called "FireSSH", and I am able to ssh to my Pivos-box with that Addon!

My questions are:
- Why does ssh-connection fail on terminal while it is no problem with firefox-addon on the same machine?
- What can I do to fix ssh-connection on my arch desktops?


My guess:
While running the ssh command, I wasnt asked if I want to "add" the new Pivo-host into .ssh/known_hosts (which ssh always does when connecting to a new machine), so, somehow I do not seem to get the "new" keys... While with the FirefoxAddon, I am asked "do you want to add the new host"...


Update:
The Firefox-Addon wrote the new kodi key into my  known_hosts.  Since then, I am able to ssh to the box with my terminal. So, there was a problem with retrieving the new box's keys...
I still have this issue on 3 more Arch desktops.
Copying the new entry in known_hosts to my other machines solved this problem.
I still have one machine "left" with the problem, in order to learn how to fix it without the need of a Firefox-Addon.

Last edited by produnis (2015-04-07 09:45:39)

Offline

Pages: 1

Board footer

Powered by FluxBB