odd problem with connecting from a specific network



Hi,

I have an odd problem with ssh connections only (it seems), from a specific network, ie this doesn't happen when on the same LAN as the ssh server. (and not all non-local networks, over the internet is fine)

If I try an connect to the server;
[root@servername log]# ssh -V
OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
[root@servername log]# rpm -qa| grep openssh
openssh-clients-3.9p1-8.RHEL4.15
openssh-server-3.9p1-8.RHEL4.15
openssh-3.9p1-8.RHEL4.15

from any client, example cygwin;
$ ssh -V
OpenSSH_4.6p1, OpenSSL 0.9.8e 23 Feb 2007

$ ssh username@servername
#it just hangs here for the client, and this can be replicated using secureCRT client as well

The connection hangs at the following point, which corresponds to these lines in the debug log;
Aug 14 14:36:01 servername sshd[495]: debug2: kex_derive_keys
Aug 14 14:36:01 servername sshd[495]: debug2: set_newkeys: mode 1
Aug 14 14:36:01 servername sshd[495]: debug1: SSH2_MSG_NEWKEYS sent
Aug 14 14:36:01 servername sshd[495]: debug1: expecting SSH2_MSG_NEWKEYS
Aug 14 14:36:01 servername sshd[495]: debug2: set_newkeys: mode 0
Aug 14 14:36:01 servername sshd[495]: debug1: SSH2_MSG_NEWKEYS received
Aug 14 14:36:01 servername sshd[495]: debug1: KEX done
Aug 14 14:36:01 servername sshd[495]: debug1: userauth-request for user username service ssh-connection method none
Aug 14 14:36:01 servername sshd[495]: debug1: attempt 0 failures 0
Aug 14 14:36:01 servername sshd[495]: debug2: input_userauth_request: setting up authctxt for username
Aug 14 15:36:01 servername sshd[494]: debug2: monitor_read: 7 used once, disabling now
Aug 14 14:36:01 servername sshd[495]: debug2: input_userauth_request: try method none
Aug 14 15:36:01 servername sshd[494]: debug1: PAM: initializing for "username"

So I guess pam is trying to do something, which due to the network settings of my client pc, is failing. Any idea what that could be?

Thanks,

Tom





----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.



Relevant Pages

  • Re: [fw-wiz] Is NAT in OpenBSD PF UPnP enabled or Non UPnP?
    ... >> I start by not giving logins and SSH access to users I don't trust. ... a network topology which goes around the ... >> firewall and thus is a serious hole to network security. ... >> have access via UPnP to, well, anything that device might happen to ...
    (Firewall-Wizards)
  • Re: Problem with firewall and SSH port forwarding
    ... CG> I'm trying to restrict access to my machine by restricting the IP ... CG> addresses from which outside ssh connections can be made. ... CG> The 'client' is trying to do the following:- ...
    (comp.security.ssh)
  • Re: Security Breached
    ... I have a typical home network that looks like this: ... on both the DMZ and port forward questions. ... I have the vnc port blocked at the router so I presumed it was safe to ... they done it port forwarding over SSH (if your assumption of only SSH ...
    (alt.computer.security)
  • Re: Questions on some wierd /var/log entries
    ... How do I find out if I'm on an ipv6 network? ... That is because I prefer using iptables directly. ... then you should start learning about its firewall ... Another important restriction for ssh is to authenticate by certificate ...
    (comp.os.linux.misc)
  • Re: use ipchains to block all ports > 60,000
    ... Now what version of ssh is ... Put the suggested hub between the box and the internet, ... >> By temporarily breaking the network connection and inserting a hub ... evidence of users you know not of appearing on ...
    (comp.os.linux.security)