Bugzilla – Attachment 3631 Details for
Bug 3507
Cannot get host-based authentication to work
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
OpenSSH_9.1p1 server output
server-out.txt (text/plain), 14.60 KB, created by
Thomas Koeller
on 2022-12-08 05:30:58 AEDT
(
hide
)
Description:
OpenSSH_9.1p1 server output
Filename:
MIME Type:
Creator:
Thomas Koeller
Created:
2022-12-08 05:30:58 AEDT
Size:
14.60 KB
patch
obsolete
>debug2: load_server_config: filename /usr/local/etc/ssh/sshd_config >debug2: load_server_config: done config len = 3765 >debug2: parse_server_config_depth: config /usr/local/etc/ssh/sshd_config len 3765 >debug2: /usr/local/etc/ssh/sshd_config line 15: new include /usr/local/etc/ssh/sshd_config.d/*.conf >debug2: /usr/local/etc/ssh/sshd_config line 15: including /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf >debug2: load_server_config: filename /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf >debug2: load_server_config: done config len = 537 >debug2: parse_server_config_depth: config /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf len 537 >debug3: checking syntax for 'Match User=thomas' >/usr/local/etc/ssh/sshd_config.d/40-standard-user.conf line 9: Unsupported option GSSAPIAuthentication >/usr/local/etc/ssh/sshd_config.d/40-standard-user.conf line 14: Unsupported option KerberosAuthentication >debug3: /usr/local/etc/ssh/sshd_config:25 setting ListenAddress 192.168.0.1:22 >debug3: /usr/local/etc/ssh/sshd_config:26 setting ListenAddress [fd46:1ffa:d8e0::1]:22 >debug3: /usr/local/etc/ssh/sshd_config:28 setting HostKey /usr/local/etc/ssh/ssh_host_ed25519_key >debug3: /usr/local/etc/ssh/sshd_config:30 setting HostKeyAlgorithms ssh-ed25519,ssh-ed25519-cert-v01@openssh.com >debug3: /usr/local/etc/ssh/sshd_config:37 setting LogLevel DEBUG >debug3: /usr/local/etc/ssh/sshd_config:52 setting AuthorizedKeysFile .ssh/authorized_keys >debug3: /usr/local/etc/ssh/sshd_config:60 setting HostbasedAuthentication yes >debug3: /usr/local/etc/ssh/sshd_config:63 setting IgnoreUserKnownHosts yes >debug3: /usr/local/etc/ssh/sshd_config:65 setting IgnoreRhosts yes >debug3: /usr/local/etc/ssh/sshd_config:68 setting PasswordAuthentication no >debug3: /usr/local/etc/ssh/sshd_config:72 setting KbdInteractiveAuthentication no >debug3: /usr/local/etc/ssh/sshd_config:99 setting UsePAM yes >debug3: /usr/local/etc/ssh/sshd_config:108 setting PrintMotd no >debug3: /usr/local/etc/ssh/sshd_config:118 setting PermitTunnel yes >debug1: sshd version OpenSSH_9.1, OpenSSL 3.0.5 5 Jul 2022 >debug1: private host key #0: ssh-ed25519 SHA256:csWU9fi5IWZ7AOmRGcYQJgHi5jk2jEG6x3Nl+EkadHk >debug1: rexec_argv[0]='/usr/local/sbin/sshd' >debug1: rexec_argv[1]='-ddd' >debug3: oom_adjust_setup >debug1: Set /proc/self/oom_score_adj from 200 to -1000 >debug2: fd 3 setting O_NONBLOCK >debug3: sock_set_v6only: set socket 3 IPV6_V6ONLY >debug1: Bind to port 22 on fd46:1ffa:d8e0::1. >Server listening on fd46:1ffa:d8e0::1 port 22. >debug2: fd 4 setting O_NONBLOCK >debug1: Bind to port 22 on 192.168.0.1. >Server listening on 192.168.0.1 port 22. >debug3: fd 5 is not O_NONBLOCK >debug1: Server will not fork when running in debugging mode. >debug3: send_rexec_state: entering fd = 8 config len 3765 >debug3: ssh_msg_send: type 0 >debug3: send_rexec_state: done >debug1: rexec start in 5 out 5 newsock 5 pipe -1 sock 8 >debug3: recv_rexec_state: entering fd = 5 >debug3: ssh_msg_recv entering >debug3: recv_rexec_state: done >debug2: parse_server_config_depth: config rexec len 3765 >debug2: parse_server_config_depth: config /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf len 537 >debug3: checking syntax for 'Match User=thomas' >/usr/local/etc/ssh/sshd_config.d/40-standard-user.conf line 9: Unsupported option GSSAPIAuthentication >/usr/local/etc/ssh/sshd_config.d/40-standard-user.conf line 14: Unsupported option KerberosAuthentication >debug3: rexec:25 setting ListenAddress 192.168.0.1:22 >debug3: rexec:26 setting ListenAddress [fd46:1ffa:d8e0::1]:22 >debug3: rexec:28 setting HostKey /usr/local/etc/ssh/ssh_host_ed25519_key >debug3: rexec:30 setting HostKeyAlgorithms ssh-ed25519,ssh-ed25519-cert-v01@openssh.com >debug3: rexec:37 setting LogLevel DEBUG >debug3: rexec:52 setting AuthorizedKeysFile .ssh/authorized_keys >debug3: rexec:60 setting HostbasedAuthentication yes >debug3: rexec:63 setting IgnoreUserKnownHosts yes >debug3: rexec:65 setting IgnoreRhosts yes >debug3: rexec:68 setting PasswordAuthentication no >debug3: rexec:72 setting KbdInteractiveAuthentication no >debug3: rexec:99 setting UsePAM yes >debug3: rexec:108 setting PrintMotd no >debug3: rexec:118 setting PermitTunnel yes >debug1: sshd version OpenSSH_9.1, OpenSSL 3.0.5 5 Jul 2022 >debug1: private host key #0: ssh-ed25519 SHA256:csWU9fi5IWZ7AOmRGcYQJgHi5jk2jEG6x3Nl+EkadHk >debug1: inetd sockets after dupping: 3, 3 >Connection from fd46:1ffa:d8e0::1 port 37754 on fd46:1ffa:d8e0::1 port 22 rdomain "" >debug1: Local version string SSH-2.0-OpenSSH_9.1 >debug1: Remote protocol version 2.0, remote software version OpenSSH_9.1 >debug1: compat_banner: match: OpenSSH_9.1 pat OpenSSH* compat 0x04000000 >debug2: fd 3 setting O_NONBLOCK >debug3: ssh_sandbox_init: preparing seccomp filter sandbox >debug2: Network child is on pid 88115 >debug3: preauth child monitor started >debug3: privsep user:group 74:74 [preauth] >debug1: permanently_set_uid: 74/74 [preauth] >debug3: ssh_sandbox_child_debugging: installing SIGSYS handler [preauth] >debug3: ssh_sandbox_child: setting PR_SET_NO_NEW_PRIVS [preauth] >debug3: ssh_sandbox_child: attaching seccomp filter program [preauth] >debug1: list_hostkey_types: ssh-ed25519 [preauth] >debug3: send packet: type 20 [preauth] >debug1: SSH2_MSG_KEXINIT sent [preauth] >debug3: receive packet: type 20 [preauth] >debug1: SSH2_MSG_KEXINIT received [preauth] >debug2: local server KEXINIT proposal [preauth] >debug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256 [preauth] >debug2: host key algorithms: ssh-ed25519 [preauth] >debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com [preauth] >debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com [preauth] >debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 [preauth] >debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 [preauth] >debug2: compression ctos: none,zlib@openssh.com [preauth] >debug2: compression stoc: none,zlib@openssh.com [preauth] >debug2: languages ctos: [preauth] >debug2: languages stoc: [preauth] >debug2: first_kex_follows 0 [preauth] >debug2: reserved 0 [preauth] >debug2: peer client KEXINIT proposal [preauth] >debug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c [preauth] >debug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 [preauth] >debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com [preauth] >debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com [preauth] >debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 [preauth] >debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 [preauth] >debug2: compression ctos: none,zlib@openssh.com,zlib [preauth] >debug2: compression stoc: none,zlib@openssh.com,zlib [preauth] >debug2: languages ctos: [preauth] >debug2: languages stoc: [preauth] >debug2: first_kex_follows 0 [preauth] >debug2: reserved 0 [preauth] >debug1: kex: algorithm: sntrup761x25519-sha512@openssh.com [preauth] >debug1: kex: host key algorithm: ssh-ed25519 [preauth] >debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none [preauth] >debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none [preauth] >debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth] >debug3: receive packet: type 30 [preauth] >debug1: SSH2_MSG_KEX_ECDH_INIT received [preauth] >debug3: mm_sshkey_sign: entering [preauth] >debug3: mm_request_send: entering, type 6 [preauth] >debug3: mm_sshkey_sign: waiting for MONITOR_ANS_SIGN [preauth] >debug3: mm_request_receive_expect: entering, type 7 [preauth] >debug3: mm_request_receive: entering [preauth] >debug3: mm_request_receive: entering >debug3: monitor_read: checking request 6 >debug3: mm_answer_sign: entering >debug3: mm_answer_sign: ssh-ed25519 KEX signature len=83 >debug3: mm_request_send: entering, type 7 >debug2: monitor_read: 6 used once, disabling now >debug3: send packet: type 31 [preauth] >debug3: send packet: type 21 [preauth] >debug2: ssh_set_newkeys: mode 1 [preauth] >debug1: rekey out after 134217728 blocks [preauth] >debug1: SSH2_MSG_NEWKEYS sent [preauth] >debug1: Sending SSH2_MSG_EXT_INFO [preauth] >debug3: send packet: type 7 [preauth] >debug1: expecting SSH2_MSG_NEWKEYS [preauth] >debug3: receive packet: type 21 [preauth] >debug1: SSH2_MSG_NEWKEYS received [preauth] >debug2: ssh_set_newkeys: mode 0 [preauth] >debug1: rekey in after 134217728 blocks [preauth] >debug1: KEX done [preauth] >debug3: receive packet: type 5 [preauth] >debug3: send packet: type 6 [preauth] >debug3: receive packet: type 50 [preauth] >debug1: userauth-request for user thomas service ssh-connection method none [preauth] >debug1: attempt 0 failures 0 [preauth] >debug3: mm_getpwnamallow: entering [preauth] >debug3: mm_request_send: entering, type 8 [preauth] >debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM [preauth] >debug3: mm_request_receive_expect: entering, type 9 [preauth] >debug3: mm_request_receive: entering [preauth] >debug3: mm_request_receive: entering >debug3: monitor_read: checking request 8 >debug3: mm_answer_pwnamallow: entering >debug2: parse_server_config_depth: config reprocess config len 3765 >debug2: parse_server_config_depth: config /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf len 537 >debug3: checking match for 'User=thomas' user thomas host fd46:1ffa:d8e0::1 addr fd46:1ffa:d8e0::1 laddr fd46:1ffa:d8e0::1 lport 22 >debug1: user thomas matched 'User thomas' at line 1 >debug3: match found >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:4 setting AuthenticationMethods hostbased >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:6 setting AllowUsers thomas >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:7 setting DenyUsers none >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:8 setting ForceCommand none >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:9 setting GSSAPIAuthentication no >/usr/local/etc/ssh/sshd_config.d/40-standard-user.conf line 9: Unsupported option GSSAPIAuthentication >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:10 setting HostbasedAcceptedAlgorithms ssh-ed25519-cert-v01@openssh.com,ssh-ed25519 >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:11 setting HostbasedAuthentication yes >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:12 setting HostbasedUsesNameFromPacketOnly yes >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:13 setting IgnoreRhosts yes >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:14 setting KerberosAuthentication no >/usr/local/etc/ssh/sshd_config.d/40-standard-user.conf line 14: Unsupported option KerberosAuthentication >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:15 setting PasswordAuthentication no >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:16 setting PermitRootLogin no >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:17 setting PermitTTY yes >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:18 setting PermitTunnel no >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:19 setting PermitUserRC yes >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:20 setting PubkeyAuthentication no >debug3: /usr/local/etc/ssh/sshd_config.d/40-standard-user.conf:21 setting PubkeyAcceptedAlgorithms ssh-ed25519,ssh-ed25519-cert-v01@openssh.com >debug3: auth2_setup_methods_lists: checking methods >debug1: authentication methods list 0: hostbased >debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1 >debug3: mm_request_send: entering, type 9 >debug2: monitor_read: 8 used once, disabling now >debug2: input_userauth_request: setting up authctxt for thomas [preauth] >debug3: mm_start_pam entering [preauth] >debug3: mm_request_send: entering, type 100 [preauth] >debug3: mm_inform_authserv: entering [preauth] >debug3: mm_request_send: entering, type 4 [preauth] >debug3: auth2_setup_methods_lists: checking methods [preauth] >debug1: authentication methods list 0: hostbased [preauth] >debug3: authmethod_lookup: method none not allowed by AuthenticationMethods [preauth] >debug3: user_specific_delay: user specific delay 0.000ms [preauth] >debug3: ensure_minimum_time_since: elapsed 0.872ms, delaying 7.858ms (requested 8.730ms) [preauth] >debug3: mm_request_receive: entering >debug3: monitor_read: checking request 100 >debug1: PAM: initializing for "thomas" >debug1: PAM: setting PAM_RHOST to "fd46:1ffa:d8e0::1" >debug1: PAM: setting PAM_TTY to "ssh" >debug2: monitor_read: 100 used once, disabling now >debug3: mm_request_receive: entering >debug3: monitor_read: checking request 4 >debug3: mm_answer_authserv: service=ssh-connection, style= >debug2: monitor_read: 4 used once, disabling now >debug3: userauth_finish: failure partial=0 next methods="hostbased" [preauth] >debug3: send packet: type 51 [preauth] >Connection closed by authenticating user thomas fd46:1ffa:d8e0::1 port 37754 [preauth] >debug1: do_cleanup [preauth] >debug3: PAM: sshpam_thread_cleanup entering [preauth] >debug1: monitor_read_log: child log fd closed >debug3: mm_request_receive: entering >debug1: do_cleanup >debug1: PAM: cleanup >debug3: PAM: sshpam_thread_cleanup entering >debug1: Killing privsep child 88115
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=3631">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 3507
:
3629
|
3630
|
3631
|
3632
|
3633
|
3634
|
3635
|
3636
|
3637
|
3638
|
3639