You are not logged in.

Pages: 1

#1 2011-07-17 14:29:10

archer42
Member
Registered: 2011-06-10
Posts: 92

SSH behaves strange while access over WAN

Description:
I want to access my server via ssh and dyndns.
I am having a valid private key on the client which works without problems in the local network.
Now I am outside and ssh always wants a passwort although password authentification is disabled on the server.
When I use WinSCP to access I don't have any problems.

ssh XX -i .ssh/server -l XX -v
OpenSSH_5.8p2, OpenSSL 1.0.0d 8 Feb 2011
debug1: Reading configuration data /home/XX/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Connecting to XX port 22.
debug1: Connection established.
debug1: identity file .ssh/server type -1
debug1: identity file .ssh/server-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.4p1 FreeBSD-20100308
debug1: match: OpenSSH_5.4p1 FreeBSD-20100308 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.8
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Server host key: RSA XX
The authenticity of host 'XX' can't be established.
RSA key fingerprint is XX.
Are you sure you want to continue connecting (yes/no)? yes
Failed to add the host to the list of known hosts (/home/XX/.ssh/known_hosts).
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: .ssh/server
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
Password:


SSH is the latest version available for archlinux

Regards

Offline

#2 2011-07-17 23:23:50

fukawi2
Ex-Administratorino
From: .vic.au
Registered: 2007-09-28
Posts: 6,224
Website

Re: SSH behaves strange while access over WAN

(Please use \[code\] tags)

archer42 wrote:
Failed to add the host to the list of known hosts (/home/XX/.ssh/known_hosts).

Looks like a permission issue there perhaps... SSH can be picky about permissions

Try running the server in debug mode:

/usr/sbin/sshd -Dd -p2222

Then try connecting to that:

ssh XX -i .ssh/server -l XX -v -p2222

EDIT: Spelling.

Last edited by fukawi2 (2011-07-17 23:24:21)

Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?

BlueHackers // fscanary // resticctl

Offline

#3 2011-07-18 07:48:31

archer42
Member
Registered: 2011-06-10
Posts: 92

Re: SSH behaves strange while access over WAN

I fixed already the issue with the permissions.
Issue is still remaining


ssh XX.dyndns.org -i ~/.ssh/server -lXX -v -p22
OpenSSH_5.8p2, OpenSSL 1.0.0d 8 Feb 2011
debug1: Reading configuration data /home/XX/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config # this step takes unuasual longer
debug1: Connecting to XX.dyndns.org [XX] port 22.
debug1: Connection established.
debug1: identity file /home/XX/.ssh/server type -1
debug1: identity file /home/XX/.ssh/server-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.4p1 FreeBSD-20100308
debug1: match: OpenSSH_5.4p1 FreeBSD-20100308 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.8
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Server host key: RSA XX
debug1: Host 'XX.dyndns.org' is known and matches the RSA host key.
debug1: Found key in /home/XX/.ssh/known_hosts:1
Warning: Permanently added the RSA host key for IP address 'XX' to the list of known hosts.
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /home/XX/.ssh/server
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: keyboard-interactive
Password:

Offline

#4 2011-07-18 10:29:18

archer42
Member
Registered: 2011-06-10
Posts: 92

Re: SSH behaves strange while access over WAN

Damp me, I rebuilt the /usr dir under freebsd and the passwd db seem to be deleted while this action.

Now I rebuilt my passwd db and I can log on with password authentification.

Unfortunatly ssh still doesn't seem to be happy:


ssh server -v
OpenSSH_5.8p2, OpenSSL 1.0.0d 8 Feb 2011
debug1: Reading configuration data /home/XX/.ssh/config
debug1: Applying options for server
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Connecting to XX.dyndns.org [YY] port 22.
debug1: Connection established.
debug1: identity file /home/XX/.ssh/server type -1
debug1: identity file /home/XX/.ssh/server-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.4p1 FreeBSD-20100308
debug1: match: OpenSSH_5.4p1 FreeBSD-20100308 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.8
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Server host key: RSA XxX
debug1: Host 'XX.dyndns.org' is known and matches the RSA host key.
debug1: Found key in /home/XX/.ssh/known_hosts:1
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /home/XX/.ssh/server
debug1: read PEM private key done: type RSA
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: keyboard-interactive

Offline

#5 2011-07-18 10:39:29

fukawi2
Ex-Administratorino
From: .vic.au
Registered: 2007-09-28
Posts: 6,224
Website

Re: SSH behaves strange while access over WAN

fukawi2 wrote:

(Please use \[code\] tags)

And the point of running the server in debug mode was to see what it's output was... It doesn't change the clients output...

archer42 wrote:

D....I rebuilt the /usr dir under freebsd...

That seems like a strange thing to do if you're talking about an Arch box, and if you're not talking about an Arch box, then perhaps you should be asking the FreeBSD forums...?

Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?

BlueHackers // fscanary // resticctl

Offline

#6 2011-07-18 10:41:48

archer42
Member
Registered: 2011-06-10
Posts: 92

Re: SSH behaves strange while access over WAN

Ah just had to create new keys. Thanks for the support
Regards

Offline

Pages: 1

Board footer

Powered by FluxBB