Bugzilla – Attachment 111 Details for
Bug 270
PrivSep breaks sshd on AIX for non-root users
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
sshd output on AIX w/PrivSep
aix-privsep.log (text/plain), 11.74 KB, created by
Darren Tucker
on 2002-06-09 19:59:01 AEST
(
hide
)
Description:
sshd output on AIX w/PrivSep
Filename:
MIME Type:
Creator:
Darren Tucker
Created:
2002-06-09 19:59:01 AEST
Size:
11.74 KB
patch
obsolete
>./sshd -o 'UsePrivilegeSeparation yes' -o 'Port 3022' -d -d -d >debug3: Seeding PRNG from /usr/local/libexec/ssh-rand-helper >debug1: sshd version OpenSSH_3.2.3p1 >debug1: private host key: #0 type 0 RSA1 >debug3: Not a RSA1 key file /usr/local/etc/ssh_host_rsa_key. >debug1: read PEM private key done: type RSA >debug1: private host key: #1 type 1 RSA >debug3: Not a RSA1 key file /usr/local/etc/ssh_host_dsa_key. >debug1: read PEM private key done: type DSA >debug1: private host key: #2 type 2 DSA >debug1: Bind to port 22 on 0.0.0.0. >debug1: Bind to port 3022 on 0.0.0.0. >Server listening on 0.0.0.0 port 3022. >Generating 768 bit RSA key. >RSA key generation complete. >debug1: Server will not fork when running in debugging mode. >Connection from 127.0.0.1 port 34026 >debug1: Client protocol version 2.0; client software version OpenSSH_3.2.3p1 >debug1: match: OpenSSH_3.2.3p1 pat OpenSSH* >Enabling compatibility mode for protocol 2.0 >debug1: Local version string SSH-1.99-OpenSSH_3.2.3p1 >debug3: privsep user:group 204:1 >debug1: list_hostkey_types: ssh-rsa,ssh-dss >debug1: SSH2_MSG_KEXINIT sent >debug2: Network child is on pid 12236 >debug3: preauth child monitor started >debug3: mm_request_receive entering >debug1: SSH2_MSG_KEXINIT received >debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 >debug2: kex_parse_kexinit: ssh-rsa,ssh-dss >debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se >debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se >debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96 >debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96 >debug2: kex_parse_kexinit: none,zlib >debug2: kex_parse_kexinit: none,zlib >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: first_kex_follows 0 >debug2: kex_parse_kexinit: reserved 0 >debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 >debug2: kex_parse_kexinit: ssh-rsa,ssh-dss >debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se >debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se >debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96 >debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96 >debug2: kex_parse_kexinit: none >debug2: kex_parse_kexinit: none >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: >debug2: kex_parse_kexinit: first_kex_follows 0 >debug2: kex_parse_kexinit: reserved 0 >debug2: mac_init: found hmac-md5 >debug1: kex: client->server aes128-cbc hmac-md5 none >debug2: mac_init: found hmac-md5 >debug1: kex: server->client aes128-cbc hmac-md5 none >debug1: SSH2_MSG_KEX_DH_GEX_REQUEST received >debug3: mm_request_send entering: type 0 >debug3: mm_choose_dh: waiting for MONITOR_ANS_MODULI >debug3: mm_request_receive_expect entering: type 1 >debug3: mm_request_receive entering >debug3: monitor_read: checking request 0 >debug3: mm_answer_moduli: got parameters: 1024 2048 8192 >debug3: mm_request_send entering: type 1 >debug3: mm_choose_dh: remaining 0 >debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent >debug2: monitor_read: 0 used once, disabling now >debug3: mm_request_receive entering >debug1: dh_gen_key: priv key bits set: 130/256 >debug1: bits set: 1563/3191 >debug1: expecting SSH2_MSG_KEX_DH_GEX_INIT >debug1: bits set: 1597/3191 >debug3: mm_key_sign entering >debug3: mm_request_send entering: type 4 >debug3: monitor_read: checking request 4 >debug3: mm_answer_sign >debug3: mm_answer_sign: signature 200193c8(143) >debug3: mm_request_send entering: type 5 >debug2: monitor_read: 4 used once, disabling now >debug3: mm_request_receive entering >debug3: mm_key_sign: waiting for MONITOR_ANS_SIGN >debug3: mm_request_receive_expect entering: type 5 >debug3: mm_request_receive entering >debug1: SSH2_MSG_KEX_DH_GEX_REPLY sent >debug1: kex_derive_keys >debug1: newkeys: mode 1 >debug1: SSH2_MSG_NEWKEYS sent >debug1: waiting for SSH2_MSG_NEWKEYS >debug1: newkeys: mode 0 >debug1: SSH2_MSG_NEWKEYS received >debug1: KEX done >debug1: userauth-request for user dtucker service ssh-connection method none >debug1: attempt 0 failures 0 >debug3: mm_getpwnamallow entering >debug3: mm_request_send entering: type 6 >debug3: monitor_read: checking request 6 >debug3: mm_answer_pwnamallow >debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1 >debug3: mm_request_send entering: type 7 >debug2: monitor_read: 6 used once, disabling now >debug3: mm_request_receive entering >debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM >debug3: mm_request_receive_expect entering: type 7 >debug3: mm_request_receive entering >debug2: input_userauth_request: setting up authctxt for dtucker >debug3: mm_inform_authserv entering >debug3: mm_request_send entering: type 3 >debug3: monitor_read: checking request 3 >debug3: mm_answer_authserv: service=ssh-connection, style= >debug2: monitor_read: 3 used once, disabling now >debug3: mm_request_receive entering >debug2: input_userauth_request: try method none >debug3: mm_auth_password entering >debug3: mm_request_send entering: type 10 >debug3: monitor_read: checking request 10 >debug3: mm_answer_authpassword: sending result 0 >debug3: mm_request_send entering: type 11 >Failed none for dtucker from 127.0.0.1 port 34026 ssh2 >debug3: mm_request_receive entering >debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD >debug3: mm_request_receive_expect entering: type 11 >debug3: mm_request_receive entering >debug3: mm_auth_password: user not authenticated >Failed none for dtucker from 127.0.0.1 port 34026 ssh2 >debug1: userauth-request for user dtucker service ssh-connection method keyboard-interactive >debug1: attempt 1 failures 1 >debug2: input_userauth_request: try method keyboard-interactive >debug1: keyboard-interactive devs >debug1: auth2_challenge: user=dtucker devs= >debug1: kbdint_alloc: devices '' >debug2: auth2_challenge_start: devices >Failed keyboard-interactive for dtucker from 127.0.0.1 port 34026 ssh2 >debug1: userauth-request for user dtucker service ssh-connection method password >debug1: attempt 2 failures 2 >debug2: input_userauth_request: try method password >debug3: mm_auth_password entering >debug3: mm_request_send entering: type 10 >debug3: monitor_read: checking request 10 >debug3: mm_answer_authpassword: sending result 1 >debug3: mm_request_send entering: type 11 >Accepted password for dtucker from 127.0.0.1 port 34026 ssh2 >debug1: monitor_child_preauth: dtucker has been authenticated by privileged process >debug3: mm_get_keystate: Waiting for new keys >debug3: mm_request_receive_expect entering: type 24 >debug3: mm_request_receive entering >debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD >debug3: mm_request_receive_expect entering: type 11 >debug3: mm_request_receive entering >debug3: mm_auth_password: user authenticated >Accepted password for dtucker from 127.0.0.1 port 34026 ssh2 >debug3: mm_send_keystate: Sending new keys: 20019e18 20019888 >debug3: mm_newkeys_to_blob: converting 20019e18 >debug3: mm_newkeys_to_blob: converting 20019888 >debug3: mm_send_keystate: New keys have been sent >debug3: mm_send_keystate: Sending compression state >debug3: mm_request_send entering: type 24 >debug3: mm_newkeys_from_blob: 2001a2f8(118) >debug2: mac_init: found hmac-md5 >debug3: mm_get_keystate: Waiting for second key >debug3: mm_newkeys_from_blob: 2001a2f8(118) >debug2: mac_init: found hmac-md5 >debug3: mm_get_keystate: Getting compression state >debug3: mm_get_keystate: Getting Network I/O buffers >debug3: mm_share_sync: Share sync >debug3: mm_share_sync: Share sync end >debug3: mm_send_keystate: Finished sending state >debug1: newkeys: mode 0 >debug2: User child is on pid 12238 >debug3: mm_request_receive entering >debug1: newkeys: mode 1 >debug3: Trying to reverse map address 127.0.0.1. >debug1: Entering interactive session for SSH2. >debug1: fd 7 setting O_NONBLOCK >debug1: fd 8 setting O_NONBLOCK >debug1: server_init_dispatch_20 >debug1: server_input_channel_open: ctype session rchan 0 win 65536 max 16384 >debug1: input_session_request >debug1: channel 0: new [server-session] >debug1: session_new: init >debug1: session_new: session 0 >debug1: session_open: channel 0 >debug1: session_open: session 0: link with channel 0 >debug1: server_input_channel_open: confirm session >debug1: server_input_channel_req: channel 0 request pty-req reply 0 >debug1: session_by_channel: session 0 channel 0 >debug1: session_input_channel_req: session 0 req pty-req >debug1: Allocating pty. >debug3: mm_request_send entering: type 25 >debug3: monitor_read: checking request 25 >debug3: mm_answer_pty entering >debug1: session_new: init >debug1: session_new: session 0 >debug3: mm_pty_allocate: waiting for MONITOR_ANS_PTY >debug3: mm_request_receive_expect entering: type 26 >debug3: mm_request_receive entering >debug3: mm_request_send entering: type 26 >debug1: session_pty_req: session 0 alloc /dev/pts/5 >debug3: tty_parse_modes: SSH2 n_bytes 251 >debug3: tty_parse_modes: ospeed 38400 >debug3: tty_parse_modes: ispeed 0 >debug3: tty_parse_modes: 1 3 >debug3: tty_parse_modes: 2 28 >debug3: tty_parse_modes: 3 127 >debug3: tty_parse_modes: 4 21 >debug3: tty_parse_modes: 5 4 >debug3: tty_parse_modes: 6 0 >debug3: tty_parse_modes: 7 0 >debug3: tty_parse_modes: 8 17 >debug3: tty_parse_modes: 9 19 >debug3: tty_parse_modes: 10 26 >debug3: tty_parse_modes: 11 25 >debug3: tty_parse_modes: 12 18 >debug3: tty_parse_modes: 14 22 >debug3: tty_parse_modes: 30 0 >debug3: tty_parse_modes: 31 0 >debug3: tty_parse_modes: 32 0 >debug3: tty_parse_modes: 33 0 >debug3: tty_parse_modes: 34 0 >debug3: tty_parse_modes: 35 0 >debug3: tty_parse_modes: 36 1 >debug3: tty_parse_modes: 37 0 >debug3: tty_parse_modes: 38 1 >debug3: tty_parse_modes: 39 0 >debug3: tty_parse_modes: 40 0 >debug3: tty_parse_modes: 41 0 >debug3: tty_parse_modes: 50 1 >debug3: tty_parse_modes: 51 1 >debug3: tty_parse_modes: 52 0 >debug3: tty_parse_modes: 53 1 >debug3: tty_parse_modes: 54 1 >debug3: tty_parse_modes: 55 1 >debug3: tty_parse_modes: 56 0 >debug3: tty_parse_modes: 57 0 >debug3: tty_parse_modes: 58 0 >debug3: tty_parse_modes: 59 1 >debug3: tty_parse_modes: 60 1 >debug3: tty_parse_modes: 61 1 >debug3: tty_parse_modes: 62 0 >debug3: tty_parse_modes: 70 1 >debug3: tty_parse_modes: 71 0 >debug3: tty_parse_modes: 72 1 >debug3: tty_parse_modes: 73 0 >debug3: tty_parse_modes: 74 0 >debug3: tty_parse_modes: 75 0 >debug3: tty_parse_modes: 90 1 >debug3: tty_parse_modes: 91 1 >debug3: tty_parse_modes: 92 0 >debug3: tty_parse_modes: 93 0 >debug1: server_input_channel_req: channel 0 request shell reply 0 >debug1: session_by_channel: session 0 channel 0 >debug1: session_input_channel_req: session 0 req shell >setsid: Not owner >debug1: Received SIGCHLD. >debug1: fd 4 setting TCP_NODELAY >debug1: channel 0: rfd 10 isatty >debug1: fd 10 setting O_NONBLOCK >debug2: fd 9 is O_NONBLOCK >debug2: notify_done: reading >debug1: session_by_pid: pid 5120 >debug1: session_exit_message: session 0 channel 0 pid 5120 >debug1: channel request 0: exit-status >debug1: session_exit_message: release channel 0 >debug1: channel 0: write failed >debug1: channel 0: close_write >debug1: channel 0: output open -> closed >debug1: session_close: session 0 pid 5120 >debug3: mm_request_send entering: type 27 >Connection closed by remote host. >debug1: channel_free: channel 0: server-session, nchannels 1 >debug3: channel_free: status: The following connections are open: > #0 server-session (t4 r0 i0/2 o3/0 fd 10/-1) > >debug3: channel_close_fds: channel 0: r 10 w -1 e -1 >Closing connection to 127.0.0.1 >debug3: mm_request_send entering: type 38 >debug1: getpeername: Socket is not connected >debug1: Calling cleanup 0x20009ee8(0x200150f8) >debug1: session_pty_cleanup: session 0 release /dev/pts/5 >debug1: Calling cleanup 0x200098f8(0x0)
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=111">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 270
: 111 |
112