Bugzilla – Attachment 3637 Details for
Bug 3507
Cannot get host-based authentication to work
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
Working example ssh log.
ssh-working.log (text/plain), 12.80 KB, created by
Darren Tucker
on 2022-12-08 12:39:55 AEDT
(
hide
)
Description:
Working example ssh log.
Filename:
MIME Type:
Creator:
Darren Tucker
Created:
2022-12-08 12:39:55 AEDT
Size:
12.80 KB
patch
obsolete
>SH_AUTH_SOCK="" /opt/openssh-9.1p1/bin/ssh -F/opt/openssh-9.1p1/etc/ssh_config -vvv -p 2022 gate.dtucker.net true >OpenSSH_9.1p1, OpenSSL 3.0.5 5 Jul 2022 >debug1: Reading configuration data /opt/openssh-9.1p1/etc/ssh_config >debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/dtucker/.ssh/known_hosts' >debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/dtucker/.ssh/known_hosts2' >debug2: resolving "gate.dtucker.net" port 2022 >debug3: resolve_host: lookup gate.dtucker.net:2022 >debug3: ssh_connect_direct: entering >debug1: Connecting to gate.dtucker.net [192.168.32.1] port 2022. >debug3: set_sock_tos: set socket 3 IP_TOS 0x48 >debug1: Connection established. >debug2: hostbased key 4: ecdsa-sha2-nistp256 key from "/opt/openssh-9.1p1/etc/ssh_host_ecdsa_key" >debug2: hostbased key 5: ssh-ed25519 key from "/opt/openssh-9.1p1/etc/ssh_host_ed25519_key" >debug2: hostbased key 6: ssh-rsa key from "/opt/openssh-9.1p1/etc/ssh_host_rsa_key" >debug1: identity file /home/dtucker/.ssh/id_rsa type 0 >debug1: identity file /home/dtucker/.ssh/id_rsa-cert type -1 >debug1: identity file /home/dtucker/.ssh/id_ecdsa type 2 >debug1: identity file /home/dtucker/.ssh/id_ecdsa-cert type -1 >debug1: identity file /home/dtucker/.ssh/id_ecdsa_sk type 10 >debug1: identity file /home/dtucker/.ssh/id_ecdsa_sk-cert type -1 >debug1: identity file /home/dtucker/.ssh/id_ed25519 type 3 >debug1: identity file /home/dtucker/.ssh/id_ed25519-cert type -1 >debug1: identity file /home/dtucker/.ssh/id_ed25519_sk type -1 >debug1: identity file /home/dtucker/.ssh/id_ed25519_sk-cert type -1 >debug1: identity file /home/dtucker/.ssh/id_xmss type -1 >debug1: identity file /home/dtucker/.ssh/id_xmss-cert type -1 >debug1: identity file /home/dtucker/.ssh/id_dsa type 1 >debug1: identity file /home/dtucker/.ssh/id_dsa-cert type -1 >debug1: Local version string SSH-2.0-OpenSSH_9.1 >debug1: Remote protocol version 2.0, remote software version OpenSSH_9.1 >debug1: compat_banner: match: OpenSSH_9.1 pat OpenSSH* compat 0x04000000 >debug2: fd 3 setting O_NONBLOCK >debug1: Authenticating to gate.dtucker.net:2022 as 'dtucker' >debug3: put_host_port: [gate.dtucker.net]:2022 >debug1: load_hostkeys: fopen /home/dtucker/.ssh/known_hosts2: No such file or directory >debug1: load_hostkeys: fopen /opt/openssh-9.1p1/etc/ssh_known_hosts2: No such file or directory >debug3: order_hostkeyalgs: no algorithms matched; accept original >debug3: send packet: type 20 >debug1: SSH2_MSG_KEXINIT sent >debug3: receive packet: type 20 >debug1: SSH2_MSG_KEXINIT received >debug2: local client KEXINIT proposal >debug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,ext-info-c >debug2: host key algorithms: ssh-ed25519-cert-v01@openssh.com,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,sk-ssh-ed25519-cert-v01@openssh.com,sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ssh-ed25519@openssh.com,sk-ecdsa-sha2-nistp256@openssh.com,rsa-sha2-512,rsa-sha2-256 >debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com >debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com >debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 >debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 >debug2: compression ctos: none,zlib@openssh.com,zlib >debug2: compression stoc: none,zlib@openssh.com,zlib >debug2: languages ctos: >debug2: languages stoc: >debug2: first_kex_follows 0 >debug2: reserved 0 >debug2: peer server KEXINIT proposal >debug2: KEX algorithms: sntrup761x25519-sha512@openssh.com,curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256 >debug2: host key algorithms: rsa-sha2-512,rsa-sha2-256,ecdsa-sha2-nistp256,ssh-ed25519 >debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com >debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com >debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 >debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1 >debug2: compression ctos: none,zlib@openssh.com >debug2: compression stoc: none,zlib@openssh.com >debug2: languages ctos: >debug2: languages stoc: >debug2: first_kex_follows 0 >debug2: reserved 0 >debug1: kex: algorithm: sntrup761x25519-sha512@openssh.com >debug1: kex: host key algorithm: ssh-ed25519 >debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none >debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none >debug3: send packet: type 30 >debug1: expecting SSH2_MSG_KEX_ECDH_REPLY >debug3: receive packet: type 31 >debug1: SSH2_MSG_KEX_ECDH_REPLY received >debug1: Server host key: ssh-ed25519 SHA256:XzVjZOP7hMCfCIR+VB/5ba8h3R28Vbo57ZWQSd+e61w >debug3: put_host_port: [192.168.32.1]:2022 >debug3: put_host_port: [gate.dtucker.net]:2022 >debug1: load_hostkeys: fopen /home/dtucker/.ssh/known_hosts2: No such file or directory >debug1: load_hostkeys: fopen /opt/openssh-9.1p1/etc/ssh_known_hosts2: No such file or directory >debug1: checking without port identifier >debug1: load_hostkeys: fopen /home/dtucker/.ssh/known_hosts2: No such file or directory >debug3: record_hostkey: found key type ED25519 in file /opt/openssh-9.1p1/etc/ssh_known_hosts:1 >debug3: load_hostkeys_file: loaded 1 keys from gate.dtucker.net >debug1: load_hostkeys: fopen /opt/openssh-9.1p1/etc/ssh_known_hosts2: No such file or directory >debug1: Host 'gate.dtucker.net' is known and matches the ED25519 host key. >debug1: Found key in /opt/openssh-9.1p1/etc/ssh_known_hosts:1 >debug3: check_host_key: host key found in GlobalKnownHostsFile; disabling UpdateHostkeys >debug1: found matching key w/out port >debug3: send packet: type 21 >debug2: ssh_set_newkeys: mode 1 >debug1: rekey out after 134217728 blocks >debug1: SSH2_MSG_NEWKEYS sent >debug1: expecting SSH2_MSG_NEWKEYS >debug3: receive packet: type 21 >debug1: SSH2_MSG_NEWKEYS received >debug2: ssh_set_newkeys: mode 0 >debug1: rekey in after 134217728 blocks >debug1: Skipping ssh-dss key /home/dtucker/.ssh/id_dsa - corresponding algo not in PubkeyAcceptedAlgorithms >debug1: Will attempt key: /home/dtucker/.ssh/id_rsa RSA SHA256:DFSE40XcIIaReZdMeFi30sxNER9dbTTweG875bIeae0 >debug1: Will attempt key: /home/dtucker/.ssh/id_ecdsa ECDSA SHA256:evD2d6VHW4VK1hfHfPXkzVI3JyIsB9E8vv/sQUp9jKw >debug1: Will attempt key: /home/dtucker/.ssh/id_ecdsa_sk ECDSA-SK SHA256:0Zw6tzEFVGz39TjRZdy15KJq7LE0xErDH03JCoOE6Uo authenticator >debug1: Will attempt key: /home/dtucker/.ssh/id_ed25519 ED25519 SHA256:futYVCudg4xI1K2Quo4hIN0DSCxgAoKSatA6Gb2TgM0 >debug1: Will attempt key: /home/dtucker/.ssh/id_ed25519_sk >debug1: Will attempt key: /home/dtucker/.ssh/id_xmss >debug2: pubkey_prepare: done >debug3: send packet: type 5 >debug3: receive packet: type 7 >debug1: SSH2_MSG_EXT_INFO received >debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,sk-ssh-ed25519@openssh.com,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ecdsa-sha2-nistp256@openssh.com,webauthn-sk-ecdsa-sha2-nistp256@openssh.com> >debug1: kex_input_ext_info: publickey-hostbound@openssh.com=<0> >debug3: receive packet: type 6 >debug2: service_accept: ssh-userauth >debug1: SSH2_MSG_SERVICE_ACCEPT received >debug3: send packet: type 50 >debug3: receive packet: type 51 >debug1: Authentications that can continue: publickey,password,keyboard-interactive,hostbased >debug3: start over, passed a different list publickey,password,keyboard-interactive,hostbased >debug3: preferred hostbased >debug3: authmethod_lookup hostbased >debug3: remaining preferred: >debug3: authmethod_is_enabled hostbased >debug1: Next authentication method: hostbased >debug3: userauth_hostbased: trying key type ssh-ed25519-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type ecdsa-sha2-nistp256-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type ecdsa-sha2-nistp384-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type ecdsa-sha2-nistp521-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type sk-ssh-ed25519-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type sk-ecdsa-sha2-nistp256-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type rsa-sha2-512-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type rsa-sha2-256-cert-v01@openssh.com >debug3: userauth_hostbased: trying key type ssh-ed25519 >debug1: userauth_hostbased: trying hostkey ssh-ed25519 SHA256:XzVjZOP7hMCfCIR+VB/5ba8h3R28Vbo57ZWQSd+e61w using sigalg ssh-ed25519 >debug2: userauth_hostbased: chost gate.dtucker.net. >debug3: ssh_msg_send: type 2 >debug3: ssh_msg_recv entering >debug3: ssh_keysign: [child] pid=2002149, exec /opt/openssh-9.1p1/libexec/ssh-keysign >debug3: send packet: type 50 >debug2: we sent a hostbased packet, wait for reply >debug3: receive packet: type 52 >Authenticated to gate.dtucker.net ([192.168.32.1]:2022) using "hostbased". >debug3: clear hostkey 4 >debug3: clear hostkey 6 >debug1: channel 0: new [client-session] >debug3: ssh_session2_open: channel_new: 0 >debug2: channel 0: send open >debug3: send packet: type 90 >debug1: Requesting no-more-sessions@openssh.com >debug3: send packet: type 80 >debug1: Entering interactive session. >debug1: pledge: network >debug3: receive packet: type 80 >debug1: client_input_global_request: rtype hostkeys-00@openssh.com want_reply 0 >debug3: receive packet: type 4 >debug1: Remote: Accepted for gate.dtucker.net [gate.dtucker.net] by /opt/openssh-9.1p1/etc/shosts.equiv. >debug3: receive packet: type 91 >debug2: channel_input_open_confirmation: channel 0: callback start >debug2: fd 3 setting TCP_NODELAY >debug3: set_sock_tos: set socket 3 IP_TOS 0x20 >debug2: client_session2_setup: id 0 >debug1: Sending command: true >debug2: channel 0: request exec confirm 1 >debug3: send packet: type 98 >debug2: channel_input_open_confirmation: channel 0: callback done >debug2: channel 0: open confirm rwindow 0 rmax 32768 >debug2: channel 0: rcvd adjust 2097152 >debug3: receive packet: type 99 >debug2: channel_input_status_confirm: type 99 id 0 >debug2: exec request accepted on channel 0 >debug2: channel 0: rcvd ext data 261 >Environment: > USER=dtucker > LOGNAME=dtucker > HOME=/home/dtucker > PATH=/usr/bin:/bin:/usr/sbin:/sbin:/opt/openssh-9.1p1/bin > MAIL=/var/mail/dtucker > SHELL=/bin/bash > SSH_CLIENT=192.168.32.1 49370 2022 > SSH_CONNECTION=192.168.32.1 49370 192.168.32.1 2022 >debug2: channel 0: written 261 to efd 6 >debug3: receive packet: type 96 >debug2: channel 0: rcvd eof >debug2: channel 0: output open -> drain >debug2: channel 0: obuf empty >debug2: chan_shutdown_write: channel 0: (i0 o1 sock -1 wfd 5 efd 6 [write]) >debug2: channel 0: output drain -> closed >debug3: receive packet: type 98 >debug1: client_input_channel_req: channel 0 rtype exit-status reply 0 >debug3: receive packet: type 98 >debug1: client_input_channel_req: channel 0 rtype eow@openssh.com reply 0 >debug2: channel 0: rcvd eow >debug2: chan_shutdown_read: channel 0: (i0 o3 sock -1 wfd 4 efd 6 [write]) >debug2: channel 0: input open -> closed >debug3: receive packet: type 97 >debug2: channel 0: rcvd close >debug3: channel 0: will not send data after close >debug2: channel 0: almost dead >debug2: channel 0: gc: notify user >debug2: channel 0: gc: user detached >debug2: channel 0: send close >debug3: send packet: type 97 >debug2: channel 0: is dead >debug2: channel 0: garbage collecting >debug1: channel 0: free: client-session, nchannels 1 >debug3: channel 0: status: The following connections are open: > #0 client-session (t4 r0 i3/0 o3/0 e[write]/0 fd -1/-1/6 sock -1 cc -1 io 0x00/0x00) > >debug3: send packet: type 1 >Transferred: sent 3232, received 3920 bytes, in 0.1 seconds >Bytes per second: sent 35068.4, received 42533.5 >debug1: Exit status 0 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=3637">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 3507
:
3629
|
3630
|
3631
|
3632
|
3633
|
3634
|
3635
|
3636
| 3637 |
3638
|
3639