ssh_exchange_identification: Connection closed by remote host

Alfred Hovdestad alfred.hovdestad at usask.ca
Sun Sep 7 07:13:57 EST 2003 

This has taken far too long to get to you, and I apologize for that.

There are four attachments included:

client.working
client.notworking
server.working
server.notworking

I am running RedHat 9.0 on both systems with all of the latest patches 
from RedHat.  The current rpm for openssh is openssh-3.5p1-6.9.  I have 
PAM configured to use kerberos for password authentication.  The only 
difference in the two scenarios is the Kerberos server.  We have a two 
kerberos servers, one a Windows Domain Controller and the other a Sun.

If I use the Windows DC for Kerberos authentication, I can login at the 
console, I can generate a kerberos ticket (kinit), but I cannot login 
with ssh.

If I use the Sun for kerberos authentication, I can login at the 
console, I can generate a kerberos ticket (kinit), and I can login with ssh.

If I downgrade to the previous rpm from RedHat (openssh-3.5p1-6), I can 
login with ssh to the server.  If it would help, I can also generate the 
log file for the previous version.

If you require more information, please let me know.

     Alfred Hovdestad
     System Administrator
     University of Saskatchewan
     RHCE: 807200142604340


Darren Tucker wrote:
> Alfred Hovdestad wrote:
> 
>>I am running RedHat 9.0 with openssh 3.5.  I have tried connecting from
>>a RedHat 8.0 box running openshh 3.4 and a tru64 box also with openssh
>>3.4, with the same results:  I can login to the new account, but not to
>>my existing account.
> 
> 
> Perhaps your password are expiring?
> 
> 
>>The problem is not with tcp wrappers, as I can login to one account, but
>>not another.  I have tried deleting my ssh keys, my host keys, and
>>rebooting my system, none of which has made any difference.
>>
>>Is there anything else I can check?  I can send any log information that
>>you need.
> 
> 
> Yes, you need to post the *server* side debugging, ie:
> 
> /path/to/sshd -ddd -p 2022
> 
> then in another window:
> 
> ssh -p 2022 servername
> 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: client.working
Url: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20030906/eb0498fc/attachment.ksh 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: client.notworking
Url: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20030906/eb0498fc/attachment-0001.ksh 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: server.working
Url: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20030906/eb0498fc/attachment-0002.ksh 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: server.notworking
Url: http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20030906/eb0498fc/attachment-0003.ksh

More information about the openssh-unix-dev mailing list