[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Gnu-arch-users] SFTP locations
From: |
Jonathan Walther |
Subject: |
Re: [Gnu-arch-users] SFTP locations |
Date: |
Mon, 15 Sep 2003 12:38:32 -0700 |
User-agent: |
Mutt/1.5.4i |
On Tue, Sep 16, 2003 at 04:03:40AM +0900, Stephen J. Turnbull wrote:
"Jonathan" == Jonathan Walther <address@hidden> writes:
Jonathan> That doesn't make sense then; why is ssh ignoring my
Jonathan> instruction to use protocol 1 that I put in .ssh/config?
It probably is using Protocol 1. Have you run with sftp/ssh -v to see
what it's actually using? The problem is that Protocol 1 does not
provide the support that Protocol 2 does for sftp, so it requires more
trickiness, which tla doesn't do. So you get a Protocol 1 SSH
connection, but then breakage at some later stage of the setup of the
sftp channel that is layered over the SSH connection.
That doesn't make sense, given that "sftp -1 savannah" works, while
"sftp savannah" doesn't. the .ssh/config file is being read. I
followed your suggestion and ran sftp with -v enabled. Before showing
you the results, I will comment on one thing: What the heck is
"compatibility mode 1.99" and why would it leap to it. And why isn't it
looking at my default protocol 1 key .ssh/identity? It is looking at
.ssh/id_dsa, which isn't supported by protocol 1, so it then dumps me at
a password prompt. Just to make sure, I added the line
IdentityFile $HOME/.ssh/identity
to my .ssh/config, but that didn't help at all.
When I say sftp isn't working for me, what I mean is, it is demanding a
password. On the Savannah server itself (not the website), there are no
passwords. Authentication is by ssh key or nothing.
Just in case there is a permissions problem, here is the listing of my
.ssh directory:
address@hidden:~$ ls -l .ssh/*
-rw-r--r-- 1 djw djw 1680 May 29 2002 authorized_keys
-rw-r--r-- 1 djw djw 3234 Jul 18 2002 authorized_keys2
-rw-r--r-- 1 djw djw 163 Sep 15 12:29 config
-rw------- 1 djw djw 668 Jul 27 2001 id_dsa
-rw-r--r-- 1 djw djw 600 Jul 27 2001 id_dsa.pub
-rw------- 1 djw djw 531 Aug 31 2001 identity
-rw-r--r-- 1 djw djw 335 Aug 31 2001 identity.pub
-rw-r--r-- 1 djw djw 18487 Sep 13 16:20 known_hosts
-rw-r--r-- 1 djw djw 2336 Nov 3 2001 known_hosts2
-rw------- 1 djw djw 512 Oct 9 2000 random_seed
Here are the debug messages, I hope they help.
sftp -v -v -v savannah
Connecting to savannah...
OpenSSH_3.6.1p2 Debian 1:3.6.1p2-5, SSH protocols 1.5/2.0, OpenSSL
0x0090702f
debug1: Reading configuration data /home/djw/.ssh/config
debug1: Applying options for savannah
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug2: ssh_connect: needpriv 0
debug1: Connecting to savannah.nongnu.org [199.232.41.4] port 22.
debug1: Connection established.
debug1: identity file $HOME/.ssh/identity type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.4p1
Debian 1:3.4p1-1
debug1: match: OpenSSH_3.4p1 Debian 1:3.4p1-1 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2 Debian 1:3.6.1p2-5
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,address@hidden
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,address@hidden,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug2: dh_gen_key: priv key bits set: 132/256
debug2: bits set: 1645/3191
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts2
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts2
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts2
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts2
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts
debug2: key_type_from_name: unknown key type '1024'
debug3: key_read: missing keytype
debug3: check_host_in_hostfile: match line 54
debug3: check_host_in_hostfile: filename /home/djw/.ssh/known_hosts
debug2: key_type_from_name: unknown key type '1024'
debug3: key_read: missing keytype
debug3: check_host_in_hostfile: match line 54
debug1: Host 'savannah.nongnu.org' is known and matches the RSA host key.
debug1: Found key in /home/djw/.ssh/known_hosts:54
debug2: bits set: 1619/3191
debug1: ssh_rsa_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue:
publickey,password,keyboard-interactive
debug3: start over, passed a different list
publickey,password,keyboard-interactive
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Trying private key: $HOME/.ssh/identity
debug3: no such identity: $HOME/.ssh/identity
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-interactive
debug3: remaining preferred: password
debug3: authmethod_is_enabled keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug2: userauth_kbdint
debug2: we sent a keyboard-interactive packet, wait for reply
debug1: Authentications that can continue:
publickey,password,keyboard-interactive
debug3: userauth_kbdint: disable: no info_req_seen
debug2: we did not send a packet, disable method
debug3: authmethod_lookup password
debug3: remaining preferred:
debug3: authmethod_is_enabled password
debug1: Next authentication method: password
address@hidden's password:
Jonathan
--
It's not true unless it makes you laugh,
but you don't understand it until it makes you weep.
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Geek House Productions, Ltd.
Providing Unix & Internet Contracting and Consulting,
QA Testing, Technical Documentation, Systems Design & Implementation,
General Programming, E-commerce, Web & Mail Services since 1998
Phone: 604-435-1205
Email: address@hidden
Webpage: http://reactor-core.org
Address: 2459 E 41st Ave, Vancouver, BC V5R2W2
pgpLPafUb_kQs.pgp
Description: PGP signature
- [Gnu-arch-users] SFTP locations, Stephen J. Turnbull, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, duchier, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Stephen J. Turnbull, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Jonathan Walther, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Jonathan Walther, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Jonathan Walther, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Stephen J. Turnbull, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Jonathan Walther, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations, Stephen J. Turnbull, 2003/09/15
- Re: [Gnu-arch-users] SFTP locations,
Jonathan Walther <=
- Re: [Gnu-arch-users] SFTP locations, Stephen J. Turnbull, 2003/09/15
Re: [Gnu-arch-users] SFTP locations, Robert Collins, 2003/09/15