LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 11-02-2004, 11:58 AM   #1
TreeHugger
Member
 
Registered: Jul 2003
Location: London
Distribution: ubuntu, mint, debian
Posts: 112

Rep: Reputation: 15
Unhappy ssh hangs after establishing connection


For about 6 months after getting my hosted webserver, I logged in via ssh with no problems and set myself up with a private key and so on. A few months ago though when I was too busy to sort it out, ssh stopped working. I get a connection and then it hangs. Worse, I honestly can't think of what it could be that changed.

Here's the verbose output when I try to login:

Quote:
debug1: authentications that can continue: publickey,password,keyboard-interactive
debug1: next auth method to try is publickey
debug1: userauth_pubkey_agent: testing agent key /home/adam/.ssh/id_rsa
debug1: input_userauth_pk_ok: pkalg ssh-rsa blen 149 lastkey 0x8091798 hint -1
debug1: ssh-userauth2 successful: method publickey
debug1: channel 0: new [client-session]
debug1: send channel open 0
debug1: Entering interactive session.
debug1: ssh_session2_setup: id 0
debug1: channel request 0: pty-req
debug1: Requesting X11 forwarding with authentication spoofing.
debug1: channel request 0: x11-req
debug1: channel request 0: shell
debug1: fd 3 setting TCP_NODELAY
debug1: channel 0: open confirm rwindow 0 rmax 32768
Then it just sits there unresponsive until I kill it off. Fortunately I can still get into the webserver using the web utils from the hosting company, so I should be able to fix it, but I don't know where to start. There's nothing similar posted here on the forum, and I'm pretty sure it's not my firewall since I dropped it (iptables) and still couldn't get it, yet I can handshake with the server.

I'd be massively grateful for any advice,

thanks
 
Old 11-03-2004, 06:27 AM   #2
TreeHugger
Member
 
Registered: Jul 2003
Location: London
Distribution: ubuntu, mint, debian
Posts: 112

Original Poster
Rep: Reputation: 15
a bit more info, just in case no-one's answering because I have left off key information (but my guess is, you're all watching the presedential election, right).

ssh -V:
OpenSSH_3.4p1 Debian 1:3.4p1-1.woody.3, SSH protocols 1.5/2.0, OpenSSL 0x0090603f

I also tried logging in from another machine - same result.

cat /etc/ssh/sshd_config
# Package generated configuration file
# See the sshd(8) manpage for defails

# What ports, IPs and protocols we listen for
Port 22
# Uncomment the next entry to accept IPv6 traffic.
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 1,2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits 768

# Logging
SyslogFacility AUTH
LogLevel INFO

# Authentication:
LoginGraceTime 600
PermitRootLogin yes
StrictModes yes

RSAAuthentication yes
PubkeyAuthentication yes
#AuthorizedKeysFile %h/.ssh/authorized_keys

# rhosts authentication should not be used
RhostsAuthentication no
# Don't read the user's ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
#IgnoreUserKnownHosts yes

# To enable empty passwords, change to yes (NOT RECOMMENDED)
PermitEmptyPasswords no

# Uncomment to disable s/key passwords
#ChallengeResponseAuthentication no

# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes

# Use PAM authentication via keyboard-interactive so PAM modules can
# properly interface with the user
PAMAuthenticationViaKbdInt yes

# To change Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
#KerberosTicketCleanup no

# Kerberos TGT Passing does only work with the AFS kaserver
#KerberosTgtPassing yes

X11Forwarding no
X11DisplayOffset 10
PrintMotd no
PrintLastLog no
KeepAlive yes
#UseLogin no

#MaxStartups 10:30:60
#Banner /etc/issue.net
#ReverseMappingCheck yes

Subsystem sftp /usr/lib/sftp-server
ReverseMappingCheck no
GatewayPorts no
AllowTcpForwarding yes
 
Old 11-03-2004, 11:20 AM   #3
TreeHugger
Member
 
Registered: Jul 2003
Location: London
Distribution: ubuntu, mint, debian
Posts: 112

Original Poster
Rep: Reputation: 15
I think I've got a more general problem than just ssh.

ftp won't show me the password prompt. And it's only on this one box. So I'm going to start a thread over in the networking forum.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
SSH connection hangs over dialup flint Linux - Software 1 04-22-2005 09:57 AM
Putty and ssh connection hangs KidKootenay Linux - Newbie 7 09-04-2004 12:30 AM
Establishing an Internet Connection anders_ant Linux - Networking 3 07-27-2004 01:37 PM
proces ssh and scp stopped, connection hangs prut Linux - Networking 2 04-10-2004 11:57 AM
Establishing an ethernet connection mikefoo Linux - Networking 2 11-07-2003 06:58 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 06:01 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration