Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding."

From: corn (a@b.com)
Date: 01/20/03

• Next message: Cruinne: "Using cvs through ssh to a non-default port"
• Previous message: Richard E. Silverman: "Re: can openssh/logins be exploited this way?"
• In reply to: Kevin Steves: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Next in thread: Marcus Herbert: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Reply: Marcus Herbert: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Reply: David Kaelbling: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: corn <a@b.com>
Date: Sun, 19 Jan 2003 18:30:50 -0500

% the warning is from the client.
Yes, I logged into a RedHat 6.2 system that had not been upgraded
and saw the same message, so I figured this would be on the client
side.

% show this:
% $ /usr/bin/X11/xauth l $DISPLAY
% $ ssh -vv -oxauthlocation=/usr/bin/X11/xauth host

Here it is, 3.5p1 from freeware.sgi.com on both machines.
Also, "XAuthLocation /usr/bin/X11/xauth" is at the bottom
of both /etc/ssh/ssh_config files. Thanks for any clues

iris% setenv DISPLAY computer.domain.com:0.0
iris% /usr/bin/X11/xauth l $DISPLAY
iris% ssh -vv -oxauthlocation=/usr/bin/X11/xauth me@other.computer.com
OpenSSH_3.5p1, SSH protocols 1.5/2.0, OpenSSL 0x0090607f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug1: ssh_connect: needpriv 0
debug1: Connecting to other.computer.com [aaa.bbb.ccc.ddd] port 22.
debug1: Connection established.
debug1: identity file /.ssh/id_rsa type -1
debug1: identity file /.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version
OpenSSH_3.5p1
debug1: match: OpenSSH_3.5p1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.5p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se

debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se

debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96

debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96

debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se

debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se

debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96

debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96

debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits set: 124/256
debug1: bits set: 1573/3191
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'other.computer.com' is known and matches the RSA host key.

debug1: Found key in /.ssh/known_hosts:8
debug1: bits set: 1537/3191
debug1: ssh_rsa_verify: signature correct
debug1: kex_derive_keys
debug1: newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: waiting for SSH2_MSG_NEWKEYS
debug1: newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: done: ssh_kex2.
debug1: send SSH2_MSG_SERVICE_REQUEST
debug1: service_accept: ssh-userauth
debug1: got SSH2_MSG_SERVICE_ACCEPT
debug1: authentications that can continue: publickey,password
debug1: next auth method to try is publickey
debug1: try privkey: /.ssh/id_rsa
debug1: try privkey: /.ssh/id_dsa
debug2: we did not send a packet, disable method
debug1: next auth method to try is password
me@other.computer.com's password:
debug2: we sent a password packet, wait for reply
debug1: ssh-userauth2 successful: method password
debug1: channel 0: new [client-session]
debug1: send channel open 0
debug1: Entering interactive session.
debug2: callback start
debug1: ssh_session2_setup: id 0
debug1: channel request 0: pty-req
debug2: x11_get_proto: /usr/bin/X11/xauth list mycomputer.com:0.0
2>/dev/null
Warning: No xauth data; using fake authentication data for X11
forwarding.
debug1: Requesting X11 forwarding with authentication spoofing.
debug1: channel request 0: x11-req
debug1: channel request 0: shell
debug1: fd 3 setting TCP_NODELAY
debug2: callback done
debug1: channel 0: open confirm rwindow 0 rmax 32768
debug2: channel 0: rcvd adjust 131072
Last login: Sun Jan 19 18:22:21 2003 from mycomputer.com

• Next message: Cruinne: "Using cvs through ssh to a non-default port"
• Previous message: Richard E. Silverman: "Re: can openssh/logins be exploited this way?"
• In reply to: Kevin Steves: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Next in thread: Marcus Herbert: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Reply: Marcus Herbert: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Reply: David Kaelbling: "Re: SGI fw_openssh 3.5p1 and "Warning: No xauth data; using fake authentication data for X11 forwarding.""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Problem with some user autentification error on sshd ... debug1: Reading configuration data /etc/ssh/ssh_config ... debug2: kex_parse_kexinit: none,zlib ... debug3: check_host_in_hostfile: match line 3 ... debug1: Next authentication method: keyboard-interactive ... (SSH) Re: ssh xterm -> HPUX fails ... debug1: read PEM private key done: type RSA ... debug3: preauth child monitor started ... debug2: monitor_read: 0 used once, ... debug2: channel 0: sent ext data 106 ... (comp.security.ssh) openssh-3.9p1 and MIT Kerberos ... Compiled MIT Kerberos 1.4. ... debug1: Connection established. ... debug2: fd 4 setting O_NONBLOCK ... # This is the ssh client system-wide configuration file. ... (comp.security.ssh) sftp quits after logging in ... debug1: read PEM private key done: type RSA ... debug2: fd 4 setting O_NONBLOCK ... debug3: privsep user:group 8999:8999 ... debug3: mm_request_receive entering ... (comp.security.ssh) HostbasedAuthentication, followed snailbook but not working! :-( ... debug1: read PEM private key done: type RSA ... debug2: kex_parse_kexinit: ... debug3: preauth child monitor started ... debug3: mm_request_send entering: type 0 ... (comp.security.ssh)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint