Re: upgraded to 4.7, now can't ssh... (fwd)

From: Peter Elsner (peter@servplex.com)
Date: 02/06/03 

Date: Thu, 06 Feb 2003 08:03:35 -0600
To: bruno schwander <bruno@tinkerbox.org>
From: Peter Elsner <peter@servplex.com>

Did you run Mergemaster afterwards?

At 06:14 PM 2/5/2003 -0800, you wrote:
>I just cvsup's/build-install world/kernel and now I can not connect to my
>box through ssh anymore.
>
>ssh -v shows thing to go well then suddenly the host closes the
>connection as shown below. I found in my logs the following message:
>
>sshd[190]: pam_start: malloc failed for pam_conv
>
>why is that failing ?
>if I enable telnetd in inetd, then I can telnet in, no problem. Of course
>I want sshd to work !!
>
>Anyone seen this happen before ?
>
>bruno
>
>OpenSSH_2.9 FreeBSD localisations 20020307, SSH protocols 1.5/2.0, OpenSSL
>0x009
>0601f
>debug1: Reading configuration data /etc/ssh/ssh_config
>debug1: Applying options for *
>debug1: Rhosts Authentication disabled, originating port will not be
>trusted.
>debug1: restore_uid
>debug1: ssh_connect: getuid 1001 geteuid 1001 anon 1
>debug1: Connecting to mail.dvart.com [64.168.139.141] port 22.
>debug1: temporarily_use_uid: 1001/1001 (e=1001)
>debug1: restore_uid
>debug1: temporarily_use_uid: 1001/1001 (e=1001)
>debug1: restore_uid
>debug1: Connection established.
>debug1: identity file /home/bruno/.ssh/id_rsa type -1
>debug1: identity file /home/bruno/.ssh/id_dsa type -1
>debug1: Remote protocol version 1.99, remote software version
>OpenSSH_3.5p1 Free
>BSD-20030201
>debug1: match: OpenSSH_3.5p1 FreeBSD-20030201 pat ^OpenSSH
>Enabling compatibility mode for protocol 2.0
>debug1: Local version string SSH-2.0-OpenSSH_2.9 FreeBSD localisations
>20020307
>debug1: SSH2_MSG_KEXINIT sent
>debug1: SSH2_MSG_KEXINIT received
>debug1: kex: server->client aes128-cbc hmac-md5 none
>debug1: kex: client->server aes128-cbc hmac-md5 none
>debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
>debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
>debug1: dh_gen_key: priv key bits set: 122/256
>debug1: bits set: 1599/3191
>debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
>debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
>debug1: Host 'mail.dvart.com' is known and matches the DSA host key.
>debug1: Found key in /home/bruno/.ssh/known_hosts2:1
>debug1: bits set: 1555/3191
>debug1: len 55 datafellows 0
>debug1: ssh_dss_verify: signature correct
>debug1: kex_derive_keys
>debug1: newkeys: mode 1
>debug1: SSH2_MSG_NEWKEYS sent
>debug1: waiting for SSH2_MSG_NEWKEYS
>debug1: newkeys: mode 0
>debug1: SSH2_MSG_NEWKEYS received
>debug1: done: ssh_kex2.
>debug1: send SSH2_MSG_SERVICE_REQUEST
>debug1: service_accept: ssh-userauth
>debug1: got SSH2_MSG_SERVICE_ACCEPT
>Connection closed by 64.168.139.141
>debug1: Calling cleanup 0x805971c(0x0)
>
>
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-security" in the body of the message

----------------------------------------------------------------------------------------------------------
Peter Elsner <peter@servplex.com>
Vice President Of Customer Service (And System Administrator)
1835 S. Carrier Parkway
Grand Prairie, Texas 75051
(972) 263-2080 - Voice
(972) 263-2082 - Fax
(972) 489-4838 - Cell Phone
(425) 988-8061 - eFax

I worry about my child and the Internet all the time, even though she's
too young to have logged on yet. Here's what I worry about. I worry
that 10 or 15 years from now, she will come to me and say "Daddy, where
were you when they took freedom of the press away from the Internet?"
-- Mike Godwin

Unix IS user friendly... It's just selective about who its friends are.
System Administration - It's a dirty job, but somebody said I had to do it.
If you receive something that says 'Send this to everyone you know,
pretend you don't know me.

Standard $500/message proofreading fee applies for UCE.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • Re: SSH commands to HMC
    ... debug1: Reading configuration data ... debug1: connect to address 10.26.10.21 port 22: ... Connection timed out ... ssh: connect to host 10.26.10.21 port 22: Connection ...
    (AIX-L)
  • Help request: problems with a 5.1 server and large numbers of ssh users.
    ... FreeBSD 5.1 because I need to be able to support ldap authentication.) ... My version of ssh is 3.6.1p2 patched to address the security concerns. ... debug1: Rhosts Authentication disabled, ... debug1: Connection established. ...
    (freebsd-current)
  • Help request: problems with a 5.1 server and large numbers of ssh users.
    ... FreeBSD 5.1 because I need to be able to support ldap authentication.) ... My version of ssh is 3.6.1p2 patched to address the security concerns. ... debug1: Rhosts Authentication disabled, ... debug1: Connection established. ...
    (freebsd-hackers)
  • SSH TCP forwarding: works with v1, not with v2 ssh
    ... that they're setting up the tunnels with no problem, ... I can get to the work ssh daemon: ... debug1: Connections to remote port 65002 forwarded to local address palimpsest:22 ... something answers (if I get "connection refused" there's no listener); ...
    (FreeBSD-Security)
  • Re: SSH TCP forwarding: works with v1, not with v2 ssh
    ... >that they're setting up the tunnels with no problem, ... >I can get to the work ssh daemon: ... > debug1: Entering interactive session. ... > Connection closed by foreign host. ...
    (FreeBSD-Security)