FreeBSD 7.1 && OpenSSH_5.1p1 && OpenLDAP 2.4.14

Konrad Heuer kheuer2 at gwdg.de
Fri Feb 27 06:18:42 PST 2009 

Hello!

I've a very strange problem connecting via ssh to a maschine running 
7.1-RELEASE-p3 with OpenSSH_5.1p1 from very different ssh clients 
including the client on the system itself.

I tried a lot of things; the problem DOES *NOT* APPEAR when doing *ONE* of 
the following things:

* using ssh protocol version 1
* setting "UseLogin yes" in /etc/ssh/sshd_config
* using local accounts instead of using OpenLDAP accounts
   via pam_ldap and nss_ldap

In any other case, the client hangs after asking for the password and has 
to be killed by SIGKILL.

ssh -vvv gives the following output:

(...)
debug1: Next authentication method: keyboard-interactive
debug2: userauth_kbdint
debug2: we sent a keyboard-interactive packet, wait for reply
debug2: input_userauth_info_req
debug2: input_userauth_info_req: num_prompts 1
Password:
debug3: packet_send2: adding 32 (len 22 padlen 10 extra_pad 64)
debug2: input_userauth_info_req
debug2: input_userauth_info_req: num_prompts 0
debug3: packet_send2: adding 48 (len 10 padlen 6 extra_pad 64)
debug1: Authentication succeeded (keyboard-interactive).
debug3: clear hostkey 0
debug3: clear hostkey 1
debug3: clear hostkey 2
debug1: channel 0: new [client-session]
debug3: ssh_session2_open: channel_new: 0
debug2: channel 0: send open
debug1: Entering interactive session.

And now ^^^ nothing happens any more ...

With "LogLevel DEBUG3" set in sshd_config sshd writes to 
/var/log/debug.log:

(...)
Feb 27 13:47:02 myhost sshd[62229]: debug3: mm_share_sync: Share sync
Feb 27 13:47:02 myhost sshd[62229]: debug3: mm_share_sync: Share sync 
end
Feb 27 13:47:02 myhost sshd[62229]: debug1: PAM: establishing 
credentials
Feb 27 13:47:02 myhost sshd[62229]: debug3: PAM: opening session
Feb 27 13:47:02 myhost sshd[62229]: debug3: mm_request_receive entering
Feb 27 13:47:02 myhost sshd[62232]: debug1: PAM: establishing 
credentials

^^^ Here logging stops.

In /var/log/auth.log you can read:

Feb 27 13:47:02 myhost sshd[62550]: Accepted keyboard-interactive/pam 
for myuser from myip port 59070 ssh2


Does anyone have an idea what to do? Or did anybody see a similar problem?

Thank you very much in advance and best regards

Konrad Heuer
GWDG, Am Fassberg, 37077 Goettingen, Germany, kheuer2 at gwdg.de

More information about the freebsd-questions mailing list