Hello, We have recently had a new problem with one of the users on one of our servers. Filezilla claims it connects and authenticates, but then fails to list the directory (although no error message is output, it just eventually times out. There is the full output of filezilla located here: http://pastebin.com/tAVcSP8Y.>From the server side, the most verbose output I can make it print can be found here: http://pastebin.com/iW4BqALf. I have set the debug level to DEBUG3 in the /etc/ssh/sshd_config line which now looks like:Subsystem sftp /usr/libexec/openssh/sftp-server -l DEBUG3 And that is what came out. SSH works as expected for the user and I cannot think of anything that has changed that would cause it to stop working. I do not get the same issue for other users on the same server. For example, the output of a working user connecting to the same server is: http://pastebin.com/6VtcCPhg (filezilla) and http://pastebin.com/9ETc8JSS (openssh). I'm at a complete loss as to what may be causing this and cannot find anyone on t'internet with the same issue. Thanks in advance, Marcus
> We have recently had a new problem with one of the users on one of our servers. > > Filezilla claims it connects and authenticates, but then fails to list > the directory (although no error message is output, it just eventually > times out. There is the full output of filezilla located here: > http://pastebin.com/tAVcSP8Y....> I do not get the same issue for other users on the same server. For > example, the output of a working user connecting to the same server is: > http://pastebin.com/6VtcCPhg (filezilla) and http://pastebin.com/9ETc8JSS > (openssh). I'm at a complete loss as to what may be causing this and > cannot find anyone on t'internet with the same issue.PMTU detection goes wrong, and the specific user has a directory with too many entries? Try to list /usr/bin/ as various users, and/or reduce the MTU for testing.
On Mon, May 23, 2016 at 3:37 PM, Philipp Marek <philipp.marek at linbit.com> wrote:> [...] > PMTU detection goes wrong, and the specific user has a directory with too > many entries? > > Try to list /usr/bin/ as various users, and/or reduce the MTU for testing. >Another useful indicator: while the connection is in the hung state, run "netstat" on both ends and figure out which line corresponds to the hung connection. If the "SendQ" entry (on the server side, probably) is non-zero and non-decreasing that indicates that TCP can't deliver the packets, in which case it's probably an MTU black hole. -- Darren Tucker (dtucker at zip.com.au) GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69 Good judgement comes with experience. Unfortunately, the experience usually comes from bad judgement.
Hi, we had a similar issue when one of our users has modified his .bashrc such that it was supposed to execute commands upon login, but they were called without absolute path and stored in non-default locations (i.e. a prior modification of the $PATH by profile.d was required). In an interactive bash a full profile was loaded and therefore it worked, but transferring files did not work, because that was not a login shell and thus the commands were not found and caused the error. Putting the commands into .profile instead of .bashrc solved the problem. That was Scientific Linux 6 (a RHEL clone), and I think it was with scp and not with sftp, but it might be related). Martin On 20.05.2016 17:07, Marcus Hann wrote:> Hello, > > We have recently had a new problem with one of the users on one of our servers. > > Filezilla claims it connects and authenticates, but then fails to list the directory (although no error message is output, it just eventually times out. There is the full output of filezilla located here: http://pastebin.com/tAVcSP8Y. > > From the server side, the most verbose output I can make it print can be found here: http://pastebin.com/iW4BqALf. I have set the debug level to DEBUG3 in the /etc/ssh/sshd_config line which now looks like: > > Subsystem sftp /usr/libexec/openssh/sftp-server -l DEBUG3 > > And that is what came out. SSH works as expected for the user and I cannot think of anything that has changed that would cause it to stop working. > > I do not get the same issue for other users on the same server. For example, the output of a working user connecting to the same server is: http://pastebin.com/6VtcCPhg (filezilla) and http://pastebin.com/9ETc8JSS (openssh). I'm at a complete loss as to what may be causing this and cannot find anyone on t'internet with the same issue. > > Thanks in advance, > Marcus > _______________________________________________ > openssh-unix-dev mailing list > openssh-unix-dev at mindrot.org > https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev-------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2252 bytes Desc: S/MIME Cryptographic Signature URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20160524/93566f0a/attachment.bin>
Hi Martin, Thanks for that, our problem was indeed that someone had edited .bashrc and had added echo lines to create a MOTD effect - having moved these to /etc/motd everything is working as expected now. Thanks, Marcus ----- Original Message ----- From: "Martin Hecht" <hecht at hlrs.de> To: "Marcus Hann" <marcus.hann at dexdyne.com>, openssh-unix-dev at mindrot.org Sent: Tuesday, 24 May, 2016 6:54:00 PM Subject: Re: Directory listing fails for specific user Hi, we had a similar issue when one of our users has modified his .bashrc such that it was supposed to execute commands upon login, but they were called without absolute path and stored in non-default locations (i.e. a prior modification of the $PATH by profile.d was required). In an interactive bash a full profile was loaded and therefore it worked, but transferring files did not work, because that was not a login shell and thus the commands were not found and caused the error. Putting the commands into .profile instead of .bashrc solved the problem. That was Scientific Linux 6 (a RHEL clone), and I think it was with scp and not with sftp, but it might be related). Martin On 20.05.2016 17:07, Marcus Hann wrote:> Hello, > > We have recently had a new problem with one of the users on one of our servers. > > Filezilla claims it connects and authenticates, but then fails to list the directory (although no error message is output, it just eventually times out. There is the full output of filezilla located here: http://pastebin.com/tAVcSP8Y. > > From the server side, the most verbose output I can make it print can be found here: http://pastebin.com/iW4BqALf. I have set the debug level to DEBUG3 in the /etc/ssh/sshd_config line which now looks like: > > Subsystem sftp /usr/libexec/openssh/sftp-server -l DEBUG3 > > And that is what came out. SSH works as expected for the user and I cannot think of anything that has changed that would cause it to stop working. > > I do not get the same issue for other users on the same server. For example, the output of a working user connecting to the same server is: http://pastebin.com/6VtcCPhg (filezilla) and http://pastebin.com/9ETc8JSS (openssh). I'm at a complete loss as to what may be causing this and cannot find anyone on t'internet with the same issue. > > Thanks in advance, > Marcus > _______________________________________________ > openssh-unix-dev mailing list > openssh-unix-dev at mindrot.org > https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev