Upgrade to rel 7.0 broke SSH

Olaf Courtney olaf_courtney at yahoo.com
Tue Sep 23 17:41:09 UTC 2008 

Hello and greetings from Newbyville,

I recently upgraded from FreeBSD 6.3-RELEASE to 7.0-RELEASE-p4, and now SSH is broken.  Other important services (chiefly SAMBA) are working properly.  From the FreeBSD server I can successfull SSH and SFTP to the localhost (127.0.0.1).  I can also SSH and SFTP to other locations on the network.  However, I cannot SSH and SFTP into the FreeBSD server from the remote locations.

Attempting to connect from a remote host returns "Connection closed by <ip address of server>".  The bottom portion of the debug output is shown below.

SSH_CONFIG and SSHD_CONFIG files show that everything is set to defaults. Also, there is nothing that pertains to OPENSSH in /etc/src.conf and /etc/make.conf.  I saw one post that recommended going into the Kernel options.  On this system, there are no options in /boot/loader.conf and /etc/sysctl.conf.  I wouldn't know what to do with them anyways.

The misc/compat6x libraries are installed as a bandaid.

Here is the tail end of the output from ssh -vvv <server>:

...
debug2: kex_parse_kexinit: none,zlib at openssh.com
debug2: kex_parse_kexinit: none,zlib at openssh.com
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_setup: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_setup: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug2: dh_gen_key: priv key bits set: 131/256
debug2: bits set: 496/1024
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename /home/opc/.ssh/known_hosts
debug3: key_read: type mismatch
debug3: check_host_in_hostfile: match line 3
debug3: check_host_in_hostfile: filename /home/opc/.ssh/known_hosts
debug3: key_read: type mismatch
debug3: check_host_in_hostfile: match line 4
debug1: Host 'tdsamba' is known and matches the DSA host key.
debug1: Found key in /home/opc/.ssh/known_hosts:3
debug2: bits set: 497/1024
debug1: ssh_dss_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: /home/opc/.ssh/identity ((nil))
debug2: key: /home/opc/.ssh/id_rsa (0xb7fda658)
debug2: key: /home/opc/.ssh/id_dsa (0xb8036ed0)
Connection closed by 172.27.124.217

Any ideas?

Thanks,
opc

More information about the freebsd-questions mailing list