[Bug 2190] Nagios command check_ssh

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Dec 21 23:15:28 EST 2013


https://bugzilla.mindrot.org/show_bug.cgi?id=2190

--- Comment #8 from Darren Tucker <dtucker at zip.com.au> ---
A couple of things:

(In reply to Kiril Varnakov from comment #6)
[...]
> debug1: sshd version OpenSSH_6.2p2
> FreeBSD-openssh-portable-6.2.p2_3,1, OpenSSL 0.9.8y 5 Feb 2013

This is a modified version of sshd.  Can you reproduce the problem with
the stock version compiled from the source on openssh.com?

> debug1: SSH2_MSG_KEXINIT sent [preauth]
> Read from socket failed: Connection reset by peer [preauth]

this looks like the client is crashing during key exchange.  A number
of methods and ciphers were added in recent versions and some clients
have had trouble with the size of the list.  you could try disabling
some of them in the server config:

KexAlgorithms
diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1

Ciphers
aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list