problems with old SSH client and
James
jamesh at lanl.gov
Wed Nov 7 08:33:11 PST 2007
On Wed, 2007-11-07 at 07:53 -0800, Juri Mianovich wrote:
> I have a machine with an older SSH client on it and I
> am trying to connect to my 6.2-RELEASE system.
>
What operating system is the older machine running (I assume FreeBSD,
and I assume 6.2 stable, but want to be sure).
What version of ssh is running on the older machine?
> I have changed the default line of:
>
> Protocol 2
>
> to:
>
> Protocol 2,1
>
> in /etc/ssh/sshd_config
>
> and now, from another modern FreeBSD system, I can
> successfully log in with this command:
>
> ssh -1 -c 3des user at host
> However, the older client, when using the exact same
> command, gets this error:
You're logging in from the modern machine to the older-ssh-version
machine successfully, but unable to use the older-ssh-version to ssh out
of the computer, then?
Do you have any DNS issues interfering? It looks from your log like
you're trying to connect straight to an IP address, but I want to make
sure.
3des is the default cypher; I don't believe you need to specify it.
Try sshing out with the -v flag, get a nice, verbose output.
Also, I'm confused. Why are you forcing the older ssh version to connect
to new ones via version 1 of the protocol? Surely they support version
2?
My very first instinct here would be to try:
ssh -v user at host
and see what happens.
>
>
> 06 Oct - 17:43:35[] ()ssh's main <0> debug2:
> ssh_connect: needpriv 0^M
> 06 Oct - 17:43:37[] ()ssh's main <0> debug1:
> Connecting to hostname [10.10.10.10] port 22.^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1:
> Connection established.^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: identity
> file /etc/ssh/identity type -1^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Remote
> protocol version 1.99, remote software version
> OpenSSH_4.5p1^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: match:
> OpenSSH_4.5p1 pat OpenSSH*^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Local
> version string SSH-1.5-OpenSSH_3.7.1p2^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Waiting
> for server public key.^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Received
> server public key (768 bits) and host key (1024
> bits).^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug3:
> check_host_in_hostfile: filename
> /etc/ssh/known_hosts^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug3:
> check_host_in_hostfile: match line 1^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug3:
> check_host_in_hostfile: filename
> /etc/ssh/known_hosts^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug3:
> check_host_in_hostfile: match line 1^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Host
> 'hostname' is known and matches the RSA1 host key.^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Found key
> in /etc/ssh/known_hosts:1^M
> 06 Oct - 17:43:38[] ()ssh's main <0> fatal: Selected
> cipher type 3des not supported by server.^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Calling
> cleanup 0x44598ec0(0x0)^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1: Calling
> cleanup 0x4458c630(0x0)^M
> 06 Oct - 17:43:38[] ()ssh's main <0> debug3:
> DecrementThreadCount() Thread count is now 1^M
>
> 06 Oct - 17:43:38[] ()ssh's main <0> debug1:
> sshExit(0) calling SSH_Exit()^M
>
>
> any ideas ?
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
More information about the freebsd-questions
mailing list