Date: Thu, 21 Sep 2000 10:14:50 -0700 From: "Crist J . Clark" <cjclark@reflexnet.net> To: Igor Serikov <bt@turtle.pangeatech.com> Cc: Alfred Perlstein <bright@wintelcom.net>, freebsd-questions@FreeBSD.ORG Subject: Re: openssh & FreeBSD 4.0: X11frorwarding Message-ID: <20000921101450.A30474@149.211.6.64.reflexcom.com> In-Reply-To: <Pine.BSF.4.05.10009210727190.36869-100000@localhost>; from bt@turtle.pangeatech.com on Thu, Sep 21, 2000 at 07:38:07AM -0700 References: <20000921001454.Z367@149.211.6.64.reflexcom.com> <Pine.BSF.4.05.10009210727190.36869-100000@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Sep 21, 2000 at 07:38:07AM -0700, Igor Serikov wrote: > On Thu, 21 Sep 2000, Crist J . Clark wrote: > > Date: Thu, 21 Sep 2000 00:14:54 -0700 > > From: Crist J . Clark <cjclark@reflexnet.net> > > Reply-To: cjclark@alum.mit.edu > > To: Igor Serikov <bt@turtle.pangeatech.com> > > Cc: Alfred Perlstein <bright@wintelcom.net>, freebsd-questions@FreeBSD.ORG > > Subject: Re: openssh & FreeBSD 4.0: X11frorwarding > > > > On Wed, Sep 20, 2000 at 10:03:37PM -0700, Igor Serikov wrote: > > > > > > Alfred, > > > > > > The settings are: > > > > > > X11Forwarding yes > > > X11DisplayOffset 10 > > > > > > When the forwarding is disabled sshd rejects the request immediately. > > > The debugging message bellow is issued by the local ssh client > > > after it failed to match the protocol name (MIT_MAGIC-COOKIE-1). > > > When looking to tcpdump listing I couldnot find any place where > > > the cookie was sent to ssh-captured port. Yet, the client > > > itself works with old sshd on another machine. So, the problem > > > is obviously somewere on the server side. > > > > Not necessarily. Like you say, you don't see the magic cookie. Not all > > X applications support magic cookies (and they need to be supported by > > the individual apps). What program is giving you the trouble? Does > > something like a vanilla xterm also fail the same way? > > > > But why this changed with a server upgrade... that is troubling. > > Well, as xterm has no idea about the other peer it shoud behave > in execatly the same way as it does when being started localy. Not _exactly_ true, but pretty much. > When I run "xterm -display localhost:0" I see: > > 07:16:15.174708 localhost.dlsrpn > localhost.6000: P 1:49(48) ack 1 win 57344 (DF) > 4500 0058 934b 4000 4006 a952 7f00 0001 E..X.K@.@..R.... > 7f00 0001 0811 1770 2c8a 0469 2c8b e2f6 .......p,..i,... > 5018 e000 bbce 0000 6c00 0b00 0000 1200 P.......l....... > 1000 0000 4d49 542d 4d41 4749 432d 434f ....MIT-MAGIC-CO > 4f4b 4945 2d31 0000 3a43 6576 5f6c 0013 OKIE-1..:Cev_l.. > 5376 1b38 0c56 2057 Sv.8.V W > > > And when after "ssh localhost": > > 07:19:52.683971 localhost.2068 > localhost.6010: P 1:13(12) ack 1 win 57344 (DF) > 4500 0034 942d 4000 4006 a894 7f00 0001 E..4.-@.@....... > 7f00 0001 0814 177a 2f08 f94a 2f0a 19b1 .......z/..J/... > 5018 e000 ca20 0000 6c00 0b00 0000 0000 P.... ..l....... > 0000 0000 .... > > So, what is the magic here ? Again, xauth does show the cookie for > localhost:10. > I can connect to my friend's machine running FreeBSD 2.2.x and everything > goes okay.... Is your XAUTHORITY shell variable set correctly in the second case? It should be something like /tmp/ssh-XXXnnnn/cookies. That's what xauth should be showing you when you are checking, so I would expect it's OK. This is wierd. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000921101450.A30474>