gnu-arch-users
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnu-arch-users] SFTP locations

From: Jonathan Walther
Subject: Re: [Gnu-arch-users] SFTP locations
Date: Mon, 15 Sep 2003 12:38:32 -0700
User-agent: Mutt/1.5.4i 
On Tue, Sep 16, 2003 at 04:03:40AM +0900, Stephen J. Turnbull wrote:

"Jonathan" == Jonathan Walther <address@hidden> writes:


   Jonathan> That doesn't make sense then; why is ssh ignoring my
   Jonathan> instruction to use protocol 1 that I put in .ssh/config?

It probably is using Protocol 1.  Have you run with sftp/ssh -v to see
what it's actually using?  The problem is that Protocol 1 does not
provide the support that Protocol 2 does for sftp, so it requires more
trickiness, which tla doesn't do.  So you get a Protocol 1 SSH
connection, but then breakage at some later stage of the setup of the
sftp channel that is layered over the SSH connection.


That doesn't make sense, given that "sftp -1 savannah" works, while
"sftp savannah" doesn't.  the .ssh/config file is being read.  I
followed your suggestion and ran sftp with -v enabled.  Before showing
you the results, I will comment on one thing:  What the heck is
"compatibility mode 1.99" and why would it leap to it.  And why isn't it
looking at my default protocol 1 key .ssh/identity?  It is looking at
.ssh/id_dsa, which isn't supported by protocol 1, so it then dumps me at
a password prompt.   Just to make sure, I added the line

   IdentityFile $HOME/.ssh/identity

to my .ssh/config, but that didn't help at all.

When I say sftp isn't working for me, what I mean is, it is demanding a
password.  On the Savannah server itself (not the website), there are no
passwords.  Authentication is by ssh key or nothing.

Just in case there is a permissions problem, here is the listing of my
.ssh directory:

address@hidden:~$ ls -l .ssh/*
-rw-r--r--    1 djw      djw          1680 May 29  2002 authorized_keys
-rw-r--r--    1 djw      djw          3234 Jul 18  2002 authorized_keys2
-rw-r--r--    1 djw      djw           163 Sep 15 12:29 config
-rw-------    1 djw      djw           668 Jul 27  2001 id_dsa
-rw-r--r--    1 djw      djw           600 Jul 27  2001 id_dsa.pub
-rw-------    1 djw      djw           531 Aug 31  2001 identity
-rw-r--r--    1 djw      djw           335 Aug 31  2001 identity.pub
-rw-r--r--    1 djw      djw         18487 Sep 13 16:20 known_hosts
-rw-r--r--    1 djw      djw          2336 Nov  3  2001 known_hosts2
-rw-------    1 djw      djw           512 Oct  9  2000 random_seed

Here are the debug messages, I hope they help.

sftp -v -v -v savannah
Connecting to savannah...
OpenSSH_3.6.1p2 Debian 1:3.6.1p2-5, SSH protocols 1.5/2.0, OpenSSL
0x0090702f
debug1: Reading configuration data /home/djw/.ssh/config
debug1: Applying options for savannah
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug2: ssh_connect: needpriv 0
debug1: Connecting to savannah.nongnu.org [199.232.41.4] port 22.
debug1: Connection established.
debug1: identity file $HOME/.ssh/identity type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.4p1 
Debian 1:3.4p1-1
debug1: match: OpenSSH_3.4p1 Debian 1:3.4p1-1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2 Debian 1:3.6.1p2-5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: 
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit: 
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: 
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug2: dh_gen_key: priv key bits set: 132/256
debug2: bits set: 1645/3191
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts2
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts2
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts2
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts2
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts
debug2: key_type_from_name: unknown key type '1024'
debug3: key_read: missing keytype
debug3: check_host_in_hostfile: match line 54
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts
debug2: key_type_from_name: unknown key type '1024'
debug3: key_read: missing keytype
debug3: check_host_in_hostfile: match line 54
debug1: Host 'savannah.nongnu.org' is known and matches the RSA host key.
debug1: Found key in /home/djw/.ssh/known_hosts:54
debug2: bits set: 1619/3191
debug1: ssh_rsa_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: 
publickey,password,keyboard-interactive
debug3: start over, passed a different list 
publickey,password,keyboard-interactive
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Trying private key: $HOME/.ssh/identity
debug3: no such identity: $HOME/.ssh/identity
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-interactive
debug3: remaining preferred: password
debug3: authmethod_is_enabled keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug2: userauth_kbdint
debug2: we sent a keyboard-interactive packet, wait for reply
debug1: Authentications that can continue: 
publickey,password,keyboard-interactive
debug3: userauth_kbdint: disable: no info_req_seen
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred:
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
address@hidden's password:


Jonathan

--
It's not true unless it makes you laugh, but you don't understand it until it makes you weep. 
   -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

                    Geek House Productions, Ltd.

 Providing Unix & Internet Contracting and Consulting,
 QA Testing, Technical Documentation, Systems Design & Implementation,
 General Programming, E-commerce, Web & Mail Services since 1998

Phone:   604-435-1205
Email:   address@hidden
Webpage: http://reactor-core.org
Address: 2459 E 41st Ave, Vancouver, BC  V5R2W2

Attachment: pgpLPafUb_kQs.pgp
Description: PGP signature

reply via email to
[Prev in Thread] Current Thread [Next in Thread]