sshd talks to much in the logs

From: hakim (hakim.st_at_web.de)
Date: 07/21/05

• Next message: Darren Tucker: "Re: public key authentication"
• Previous message: dale_at_edgehp.invalid: "Re: Is Putty a full replacement of the command line (openssh) client ?"
• Next in thread: Ben Harris: "Re: sshd talks to much in the logs"
• Reply: Ben Harris: "Re: sshd talks to much in the logs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 21 Jul 2005 02:49:10 -0700

Hi,

I have installed debian sarge. After the installation of a few packages
I recognized that sshd is in debug mode:

Jul 21 11:21:38 a15188110 sshd[14784]: Connection from x.x.x.x port
1343
Jul 21 11:21:38 a15188110 sshd[356]: debug1: Forked child 14784.
Jul 21 11:21:38 a15188110 sshd[14784]: debug1: Client protocol version
2.0; client software version PuTTY-Release-0.55
Jul 21 11:21:38 a15188110 sshd[14784]: debug1: no match:
PuTTY-Release-0.55
Jul 21 11:21:38 a15188110 sshd[14784]: debug1: Enabling compatibility
mode for protocol 2.0
Jul 21 11:21:38 a15188110 sshd[14784]: debug1: Local version string
SSH-2.0-OpenSSH_3.8.1p1 Debian-8.sarge.4
Jul 21 11:21:42 a15188110 sshd[14784]: debug1: PAM: initializing for
"user"
Jul 21 11:21:42 a15188110 sshd[14784]: debug1: PAM: setting PAM_RHOST
to "p54b2bcb3.dip.t-dialin.net"
Jul 21 11:21:42 a15188110 sshd[14784]: debug1: PAM: setting PAM_TTY to
"ssh"
Jul 21 11:21:42 a15188110 sshd[14784]: Failed none for user from
x.x.x.x port 1343 ssh2
Jul 21 11:21:45 a15188110 sshd[14784]: Accepted
keyboard-interactive/pam for user from x.x.x.x port 1343 ssh2
Jul 21 11:21:45 a15188110 sshd[14784]: debug1: monitor_child_preauth:
user has been authenticated by privileged process
Jul 21 11:21:45 a15188110 sshd[14787]: (pam_unix) session opened for
user user by (uid=0)
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: PAM: reinitializing
credentials
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: permanently_set_uid:
1000/1000
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: Entering interactive
session for SSH2.
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: server_init_dispatch_20
Jul 21 11:21:45 a15188110 sshd[14787]: debug1:
server_input_channel_open: ctype session rchan 256 win 16384 max 16384
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: input_session_request
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: channel 0: new
[server-session]
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_new: init
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_new: session 0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_open: channel 0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_open: session 0:
link with channel 0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1:
server_input_channel_open: confirm session
Jul 21 11:21:45 a15188110 sshd[14787]: debug1:
server_input_channel_req: channel 0 request pty-req reply 1
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_by_channel:
session 0 channel 0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1:
session_input_channel_req: session 0 req pty-req
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: Allocating pty.
Jul 21 11:21:45 a15188110 sshd[14784]: debug1: session_new: init
Jul 21 11:21:45 a15188110 sshd[14784]: debug1: session_new: session 0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_pty_req: session
0 alloc /dev/pts/0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1:
server_input_channel_req: channel 0 request shell reply 1
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: session_by_channel:
session 0 channel 0
Jul 21 11:21:45 a15188110 sshd[14787]: debug1:
session_input_channel_req: session 0 req shell
Jul 21 11:21:45 a15188110 sshd[14787]: debug1: PAM: setting PAM_TTY to
"/dev/pts/0"
Jul 21 11:21:45 a15188110 sshd[14788]: debug1: Setting controlling tty
using TIOCSCTTY.

All this is for one session. If I check with ps aux, I see that ssh is
invoked without any parameters. Could anyone tell me how to turn that
off?

Thanks...

• Next message: Darren Tucker: "Re: public key authentication"
• Previous message: dale_at_edgehp.invalid: "Re: Is Putty a full replacement of the command line (openssh) client ?"
• Next in thread: Ben Harris: "Re: sshd talks to much in the logs"
• Reply: Ben Harris: "Re: sshd talks to much in the logs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages ssh talks to much ... I have installed debian sarge. ... I recognized that sshd is in debug mode: ... session for SSH2. ... server_input_channel_req: channel 0 request pty-req reply 1 ... (comp.os.linux.networking) sshd talks to much ... I have installed debian sarge. ... I recognized that sshd is in debug mode: ... session for SSH2. ... server_input_channel_req: channel 0 request pty-req reply 1 ... (Debian-User) Re: kismet session ... Using a Cisco and a D-Link, I can't see the entire session ... I tell kismet_server to listen to only channel 6 (kismet_server -X ... > Ethical Hacking at the InfoSec Institute. ... > learn to write exploits and attack security infrastructure. ... (Pen-Test) preferred authentication method ... We've just enabled kerberos authentication for our system, ... once, disabling now ... session for SSH2. ... 0: link with channel 0 ... (SSH) Re: TV alert, you know you need lerts ... Channel 4 had a Japanese TV session in the the late eighties. ... (uk.media.animation.anime)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint