OpenSSH 3.1p1 upgrade problem: can't connect

From: Steve Linberg (slinberg@crocker.com)
Date: 03/08/02

• Next message: egsudp@comcast.net: "5 dollar emails"
• Previous message: jpk: "Re: takes forever to ssh from one host to another, sometimes"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Steve Linberg <slinberg@crocker.com>
Date: Fri, 08 Mar 2002 00:09:04 GMT

Kind people,

I was a little nervous about doing an upgrade from 2.2.0p1 to 3.1p1 on
my live, colo'd server via ssh before testing it out locally, so I tried
updating a local machine with the same configuration, from 2.2.0p1 to
3.1p1. These are both Red Hat 6.2 machines, with openssh and openssl
built from source.

I did the basic configure with the same parameters I used for 2.2.0p1:

./configure \
--prefix=/usr \
--sysconfdir=/etc/ssh \
--with-tcp-wrappers \
--with-ipv4-default \
--with-ssl-dir=/usr/include/openssl

It configured and built fine, and telnet shows it's running:

[localhost:~] slinberg% telnet 192.168.0.22 22
Trying 192.168.0.22...
Connected to 192.168.0.22.
Escape character is '^]'.
SSH-1.5-OpenSSH_3.1p1
^C
Connection closed by foreign host.

But when I try to connect, it doesn't recognize my password - which I'm
sure is correct, and I can use to log in normally via TTY on the same
machine. I can't connect from localhost either.

When I check /var/log/messages, I see this:

Mar 7 17:52:43 gorbag sshd[6671]: Disabling protocol version 2. Could
not load host key

No reason is given for why not. In /etc/ssh/sshd_config, I have this:

HostKey /etc/ssh/ssh_host_key

This file exists and I can read it with a text editor.

I didn't change anything on the machine from the 2.2.0p1 setup, which
had worked fine, and worked just fine before I did the install.

I'm at a bit of a loss at this point. Any suggestions about what might
be going on, or where I should look next?

TIA.

---

• Next message: egsudp@comcast.net: "5 dollar emails"
• Previous message: jpk: "Re: takes forever to ssh from one host to another, sometimes"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: How safe am I? ... >>clients, let's say ANY Openssh. ... >>spoofed by a hacker, and if successful, would said hacker ... >>to telnet instead of openssh - would also require a hacker ... (comp.security.ssh) Re: How safe am I? ... >>clients, let's say ANY Openssh. ... >>spoofed by a hacker, and if successful, would said hacker ... >>to telnet instead of openssh - would also require a hacker ... (comp.security.ssh) Re: OpenSSH 2.9p2: ssh-keygen bus errors ... >>> the same version of OpenSSH installed, ... or download the binary? ... If you built it yourself, you might have built something wrong. ... Now, none of this will help you with MacOS, of course. ... (comp.security.ssh) Re: Adding "X11UseLocalhost no" to /etc/ssh/sshd_config breaks x forwarding ... telnet: Unable to connect to remote host: Connection refused ... has been turned off either by Openssh or by Red Hat. ... feature or a bug I am unsure, there are warnings in the man page ... Good judgement comes with experience. ... (SSH) Re: telnet vs Openssh ... Make a dialup connection to your server and check the differences, ... telnet is just fine. ... >>This may be why I am seeing a slow down in screen drawing with Openssh. ... (comp.unix.sco.misc)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(14)