Re: wierd ssh failure

From: Bruce Albrecht (bruce@zuhause.mn.org)
Date: 01/26/01


From: Bruce Albrecht <bruce@zuhause.mn.org>
Date: Fri, 26 Jan 2001 14:30:44 -0600 (CST)
To: freebsd-security@FreeBSD.ORG

Matt Dillon writes:
> :I was trying to log onto my FreeBSD box today from work via ssh after
> :an ssh session apparently terminated, and for about 5 minutes I was
> :getting an error something like "User does not exist! Go away!".
> :Since this is not normal behaviour for ssh, does anyone have any idea
> :what might have happened? Could someone be doing a man-in-the-middle
> :attack on me?
> :
>
> ssh has a really ridiculously low default connections/second limit,
> you might have hit that (or maybe not, I don't get 'user does not exist'
> errors when I overrun it). Look in your /etc/ssh/sshd_config.
>
> The limit has been depreciated (removed) in -current and -stable, but
> was present in 4.2-REL. Here's what I get:
>

I forgot to mention that I'm running 4.2-stable (circa last week).
When I ran strings on sshd, I couldn't find the message that I got
from ssh, which is why I'm wondering if this was a temporary routing
error, or an attempt to do a man-in-the-middle attack.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message



Relevant Pages

  • Problems with SSH and Subversion over SSH/HTTPS
    ... I'm using a FreeBSD 7.1-RELEASE-p2 server running on AMD64, serving ssh and https, with various Mac OS X and Windows clients. ... This is notable to me because when I was running other operating systems on the same box, which I could of course make my connection fail if I ran pathological tests, the difference was like night and day. ...
    (freebsd-questions)
  • FreeBSD Security Advisory FreeBSD-SA-02:31.openssh
    ... SSH clients and servers communicate by exchanging discrete messages ... server to overwrite portions of its memory with client-provided data. ... No correction details are provided in this advisory. ... Version: GnuPG v1.0.7 (FreeBSD) ...
    (FreeBSD-Security)
  • RE: Kind of off topic.
    ... If you "need" remote desktop access, perhaps WebEx would help - or as others pointed out an RDP client for *nix should work as well. ... To some I would be able to connect using ssh, ... >> OS's from FreeBSD? ... >The fastest and simplest method is still a plain good old SSH connection ...
    (freebsd-questions)
  • Re: FreeBSD, SSH and "Enter Authentication Response"
    ... Matthew: Your suggestion worked beautifully. ... standard with FreeBSD 5.1-RELEASE. ... > SSH client software and the OpenSSH server code on FreeBSD. ...
    (freebsd-questions)
  • Re: Pasting via ssh causes data loss
    ... sftp of the file to the remote and ... I then opened an ssh session to a FreeBSD ... errors shown on the interface of the server? ...
    (freebsd-questions)