From owner-freebsd-stable@FreeBSD.ORG Mon Dec 29 06:18:38 2003 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3DE2216A4CE for ; Mon, 29 Dec 2003 06:18:38 -0800 (PST) Received: from vsmtp1.tin.it (vsmtp1.tin.it [212.216.176.221]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6011143D3F for ; Mon, 29 Dec 2003 06:18:35 -0800 (PST) (envelope-from paolo.pisati@tin.it) Received: from ims6a.cp.tin.it (192.168.70.108) by vsmtp1.tin.it (7.0.019) id 3FE95E0C0007943C; Mon, 29 Dec 2003 15:18:32 +0100 Received: from [192.168.70.228] by ims6a.cp.tin.it with HTTP; Mon, 29 Dec 2003 15:18:30 +0100 Date: Mon, 29 Dec 2003 15:18:30 +0100 Message-ID: <3FE2611600005997@ims6a.cp.tin.it> From: paolo.pisati@tin.it To: "Marian Hettwer" MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-15" Content-Transfer-Encoding: quoted-printable cc: stable@freebsd.org Subject: Re: sshd: fatal: monitor_read: unsupported request: 24 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 29 Dec 2003 14:18:38 -0000 > >You are sure, that you allowed direct root login via ssh in your FreeBSD= > >box, are you ? Because the default installation denies direct root login= . >See /etc/ssh/sshd_config the Parameter '#PermitRootLogin no' which is >the default. >You have to write 'PermitRootLogin yes' to allow it. I did it, and i found this: OpenSSH_3.4p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Rhosts Authentication disabled, originating port will not be trus= ted. debug1: ssh_connect: needpriv 0 debug1: Connecting to web* [192.168.128.*] port 22. debug1: Connection established. debug1: identity file /root/.ssh/id_rsa type 1 debug1: identity file /root/.ssh/id_dsa type 2 debug1: Remote protocol version 1.99, remote software version OpenSSH_3.5= p1 Free BSD-20030924 debug1: match: OpenSSH_3.5p1 FreeBSD-20030924 pat OpenSSH* Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_3.4p1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: dh_gen_key: priv key bits set: 122/256 debug1: bits set: 1571/3191 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'web*' is known and matches the DSA host key. debug1: Found key in /root/.ssh/known_hosts:28 debug1: bits set: 1615/3191 debug1: ssh_dss_verify: signature correct debug1: kex_derive_keys debug1: newkeys: mode 1 debug1: SSH2_MSG_NEWKEYS sent debug1: waiting for SSH2_MSG_NEWKEYS debug1: newkeys: mode 0 debug1: SSH2_MSG_NEWKEYS received debug1: done: ssh_kex2. debug1: send SSH2_MSG_SERVICE_REQUEST debug1: service_accept: ssh-userauth debug1: got SSH2_MSG_SERVICE_ACCEPT debug1: authentications that can continue: publickey,password,keyboard-in= teracti ve debug1: next auth method to try is publickey debug1: try pubkey: /root/.ssh/id_rsa debug1: authentications that can continue: publickey,password,keyboard-in= teracti ve debug1: try pubkey: /root/.ssh/id_dsa debug1: input_userauth_pk_ok: pkalg ssh-dss blen 433 lastkey 0x8098300 hi= nt 1 debug1: read PEM private key done: type DSA debug1: ssh-userauth2 successful: method publickey debug1: fd 5 setting O_NONBLOCK debug1: channel 0: new [client-session] debug1: send channel open 0 debug1: Entering interactive session. debug1: channel_free: channel 0: client-session, nchannels 1 debug1: fd 1 clearing O_NONBLOCK Connection to web* closed by remote host. Connection to web* closed. debug1: Transferred: stdin 0, stdout 0, stderr 71 bytes in 0.0 seconds debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 21899.9 debug1: Exit status -1 It seems that the authentication goes well, but thje freebsd side close the connection just before to begin the interactive session. What do you think about it? Bug? Paolo