From owner-freebsd-questions@FreeBSD.ORG Fri Feb 27 14:18:42 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1C231106564A for ; Fri, 27 Feb 2009 14:18:42 +0000 (UTC) (envelope-from kheuer2@gwdg.de) Received: from tmailer.gwdg.de (tmailer.gwdg.de [134.76.10.23]) by mx1.freebsd.org (Postfix) with ESMTP id A7CB18FC1C for ; Fri, 27 Feb 2009 14:18:41 +0000 (UTC) (envelope-from kheuer2@gwdg.de) Received: from gwdu60.gwdg.de ([134.76.8.60]) by mailer.gwdg.de with esmtps (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from ) id 1Ld31M-0004Ex-OB for freebsd-questions@freebsd.org; Fri, 27 Feb 2009 14:44:56 +0100 Date: Fri, 27 Feb 2009 14:44:56 +0100 (CET) From: Konrad Heuer To: freebsd-questions@freebsd.org Message-ID: <20090227142517.K5838@gwdu60.gwdg.de> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Spam-Level: - X-Virus-Scanned: (clean) by exiscan+sophie Subject: FreeBSD 7.1 && OpenSSH_5.1p1 && OpenLDAP 2.4.14 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Feb 2009 14:18:42 -0000 Hello! I've a very strange problem connecting via ssh to a maschine running 7.1-RELEASE-p3 with OpenSSH_5.1p1 from very different ssh clients including the client on the system itself. I tried a lot of things; the problem DOES *NOT* APPEAR when doing *ONE* of the following things: * using ssh protocol version 1 * setting "UseLogin yes" in /etc/ssh/sshd_config * using local accounts instead of using OpenLDAP accounts via pam_ldap and nss_ldap In any other case, the client hangs after asking for the password and has to be killed by SIGKILL. ssh -vvv gives the following output: (...) debug1: Next authentication method: keyboard-interactive debug2: userauth_kbdint debug2: we sent a keyboard-interactive packet, wait for reply debug2: input_userauth_info_req debug2: input_userauth_info_req: num_prompts 1 Password: debug3: packet_send2: adding 32 (len 22 padlen 10 extra_pad 64) debug2: input_userauth_info_req debug2: input_userauth_info_req: num_prompts 0 debug3: packet_send2: adding 48 (len 10 padlen 6 extra_pad 64) debug1: Authentication succeeded (keyboard-interactive). debug3: clear hostkey 0 debug3: clear hostkey 1 debug3: clear hostkey 2 debug1: channel 0: new [client-session] debug3: ssh_session2_open: channel_new: 0 debug2: channel 0: send open debug1: Entering interactive session. And now ^^^ nothing happens any more ... With "LogLevel DEBUG3" set in sshd_config sshd writes to /var/log/debug.log: (...) Feb 27 13:47:02 myhost sshd[62229]: debug3: mm_share_sync: Share sync Feb 27 13:47:02 myhost sshd[62229]: debug3: mm_share_sync: Share sync end Feb 27 13:47:02 myhost sshd[62229]: debug1: PAM: establishing credentials Feb 27 13:47:02 myhost sshd[62229]: debug3: PAM: opening session Feb 27 13:47:02 myhost sshd[62229]: debug3: mm_request_receive entering Feb 27 13:47:02 myhost sshd[62232]: debug1: PAM: establishing credentials ^^^ Here logging stops. In /var/log/auth.log you can read: Feb 27 13:47:02 myhost sshd[62550]: Accepted keyboard-interactive/pam for myuser from myip port 59070 ssh2 Does anyone have an idea what to do? Or did anybody see a similar problem? Thank you very much in advance and best regards Konrad Heuer GWDG, Am Fassberg, 37077 Goettingen, Germany, kheuer2@gwdg.de