[Bug 3507] Cannot get host-based authentication to work

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Dec 7 22:10:56 AEDT 2022


https://bugzilla.mindrot.org/show_bug.cgi?id=3507

--- Comment #6 from Thomas Koeller <thomas at koeller.dyndns.org> ---
(In reply to Darren Tucker from comment #2)
> The reason is likely in the server side log.  Please run the server
> in debug mode (eg "/path/to/sshd -ddde -p222", connect to it on port
> 222 and attach the log.

debug1: sshd version OpenSSH_8.8, OpenSSL 3.0.5 5 Jul 2022
debug1: private host key #0: ssh-ed25519
SHA256:csWU9fi5IWZ7AOmRGcYQJgHi5jk2jEG6x3Nl+EkadHk
debug1: rexec_argv[0]='/usr/sbin/sshd'
debug1: rexec_argv[1]='-d'
debug1: Set /proc/self/oom_score_adj from 200 to -1000
debug1: Bind to port 22 on fd46:1ffa:d8e0::1.
Server listening on fd46:1ffa:d8e0::1 port 22.
debug1: Bind to port 22 on 192.168.0.1.
Server listening on 192.168.0.1 port 22.
debug1: Server will not fork when running in debugging mode.
debug1: rexec start in 5 out 5 newsock 5 pipe -1 sock 8
debug1: sshd version OpenSSH_8.8, OpenSSL 3.0.5 5 Jul 2022
debug1: private host key #0: ssh-ed25519
SHA256:csWU9fi5IWZ7AOmRGcYQJgHi5jk2jEG6x3Nl+EkadHk
debug1: inetd sockets after dupping: 3, 3
Connection from fd46:1ffa:d8e0::1 port 51228 on fd46:1ffa:d8e0::1 port
22 rdomain ""
debug1: Local version string SSH-2.0-OpenSSH_8.8
debug1: Remote protocol version 2.0, remote software version
OpenSSH_8.8
debug1: compat_banner: match: OpenSSH_8.8 pat OpenSSH* compat
0x04000000
debug1: SELinux support enabled [preauth]
debug1: ssh_selinux_change_context: setting context from
'unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023' to
'unconfined_u:unconfined_r:sshd_net_t:s0-s0:c0.c1023' [preauth]
debug1: permanently_set_uid: 74/74 [preauth]
debug1: list_hostkey_types: ssh-ed25519 [preauth]
debug1: SSH2_MSG_KEXINIT sent [preauth]
debug1: SSH2_MSG_KEXINIT received [preauth]
debug1: kex: algorithm: curve25519-sha256 [preauth]
debug1: kex: host key algorithm: ssh-ed25519 [preauth]
debug1: kex: client->server cipher: aes256-gcm at openssh.com MAC:
<implicit> compression: none [preauth]
debug1: kex: server->client cipher: aes256-gcm at openssh.com MAC:
<implicit> compression: none [preauth]
debug1: kex: curve25519-sha256 need=32 dh_need=32 [preauth]
debug1: kex: curve25519-sha256 need=32 dh_need=32 [preauth]
debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth]
debug1: SSH2_MSG_KEX_ECDH_INIT received [preauth]
debug1: rekey out after 4294967296 blocks [preauth]
debug1: SSH2_MSG_NEWKEYS sent [preauth]
debug1: Sending SSH2_MSG_EXT_INFO [preauth]
debug1: expecting SSH2_MSG_NEWKEYS [preauth]
debug1: SSH2_MSG_NEWKEYS received [preauth]
debug1: rekey in after 4294967296 blocks [preauth]
debug1: KEX done [preauth]
debug1: userauth-request for user thomas service ssh-connection method
none [preauth]
debug1: attempt 0 failures 0 [preauth]
debug1: user thomas matched 'User thomas' at line 1
debug1: authentication methods list 0: hostbased
debug1: PAM: initializing for "thomas"
debug1: PAM: setting PAM_RHOST to "fd46:1ffa:d8e0::1"
debug1: PAM: setting PAM_TTY to "ssh"
debug1: authentication methods list 0: hostbased [preauth]
Connection closed by authenticating user thomas fd46:1ffa:d8e0::1 port
51228 [preauth]
debug1: do_cleanup [preauth]
debug1: monitor_read_log: child log fd closed
debug1: do_cleanup
debug1: PAM: cleanup
debug1: Killing privsep child 60899

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list