Incorrect protocol implementation by OpenSSH?
- From: "H.K. Kingston-Smith" <HKK-S@xxxxxxxxx>
- Date: Thu, 27 Sep 2007 17:59:40 GMT
I am testing against an embedded SSH server that does not allow
clients to execute commands other than through an interactive shell. That
is, when the server receives an SSH_MSG_CHANNEL_REQUEST message to
execute commands, the server replies with SSH_MSG_CHANNEL_FAILURE. The
issue that I am encountering is that OpenSSH (at least version 4.1 does)
sends an SSH_MSG_UNIMPLEMENTED message in reply.
Why? I can't believe that OpenSSH does not implement
SSH_MSG_CHANNEL_FAILURE message processing - this message is most
certainly contemplated in the standard. It is true that the
SSH_MSG_CHANNEL_REQUEST message sent by the OpenSSH client contains a 0
byte in the want-reply field. However, my interpretation of the relevant
portion of the standard (RFC 4254, section 5.4) is that the server should
send an SSH_MSG_CHANNEL_FAILURE message in this case regardless of the
contents of the want-reply field.
Is this not the correct interpretation? The PuTTY client (at
least version 0.60) does seem to agree, for it just terminates the
connection at that point without sending any SSH_MSG_UNIMPLEMENTED
- Prev by Date: Re: OpenSSH for Windows question
- Next by Date: Re: Incorrect protocol implementation by OpenSSH?
- Previous by thread: Re: OpenSSH for Windows question
- Next by thread: Re: Incorrect protocol implementation by OpenSSH?