paolo.pisati@tin.it
2003-Dec-29 03:20 UTC
sshd: fatal: monitor_read: unsupported request: 24
Hi guys, i've problem trying to login on a freebsd-stable box using ssh and pub key authentication. If i try to login from a linux box i got this msg in my log: fatal: monitor_read: unsupported request: 24 this only happen if i try to login as root and the pub key is correct (cause i used it with other account). Any idea on how to solve it? Thanks. Paolo
Hi Paolo, just a short guess, paolo.pisati@tin.it wrote:> Hi guys, > > i've problem trying to login on a freebsd-stable box using ssh and pub key > authentication. > > If i try to login from a linux box i got this msg in my log: > > fatal: monitor_read: unsupported request: 24 > > this only happen if i try to login as root and the pub key is correct (cause > i used it with other account). >You are sure, that you allowed direct root login via ssh in your FreeBSD box, are you ? Because the default installation denies direct root login. See /etc/ssh/sshd_config the Parameter '#PermitRootLogin no' which is the default. You have to write 'PermitRootLogin yes' to allow it. FWIW, Marian
paolo.pisati@tin.it
2003-Dec-29 06:18 UTC
sshd: fatal: monitor_read: unsupported request: 24
> >You are sure, that you allowed direct root login via ssh in your FreeBSD > >box, are you ? Because the default installation denies direct root login. >See /etc/ssh/sshd_config the Parameter '#PermitRootLogin no' which is >the default. >You have to write 'PermitRootLogin yes' to allow it.I did it, and i found this: OpenSSH_3.4p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: ssh_connect: needpriv 0 debug1: Connecting to web* [192.168.128.*] port 22. debug1: Connection established. debug1: identity file /root/.ssh/id_rsa type 1 debug1: identity file /root/.ssh/id_dsa type 2 debug1: Remote protocol version 1.99, remote software version OpenSSH_3.5p1 Free BSD-20030924 debug1: match: OpenSSH_3.5p1 FreeBSD-20030924 pat OpenSSH* Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_3.4p1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: dh_gen_key: priv key bits set: 122/256 debug1: bits set: 1571/3191 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'web*' is known and matches the DSA host key. debug1: Found key in /root/.ssh/known_hosts:28 debug1: bits set: 1615/3191 debug1: ssh_dss_verify: signature correct debug1: kex_derive_keys debug1: newkeys: mode 1 debug1: SSH2_MSG_NEWKEYS sent debug1: waiting for SSH2_MSG_NEWKEYS debug1: newkeys: mode 0 debug1: SSH2_MSG_NEWKEYS received debug1: done: ssh_kex2. debug1: send SSH2_MSG_SERVICE_REQUEST debug1: service_accept: ssh-userauth debug1: got SSH2_MSG_SERVICE_ACCEPT debug1: authentications that can continue: publickey,password,keyboard-interacti ve debug1: next auth method to try is publickey debug1: try pubkey: /root/.ssh/id_rsa debug1: authentications that can continue: publickey,password,keyboard-interacti ve debug1: try pubkey: /root/.ssh/id_dsa debug1: input_userauth_pk_ok: pkalg ssh-dss blen 433 lastkey 0x8098300 hint 1 debug1: read PEM private key done: type DSA debug1: ssh-userauth2 successful: method publickey debug1: fd 5 setting O_NONBLOCK debug1: channel 0: new [client-session] debug1: send channel open 0 debug1: Entering interactive session. debug1: channel_free: channel 0: client-session, nchannels 1 debug1: fd 1 clearing O_NONBLOCK Connection to web* closed by remote host. Connection to web* closed. debug1: Transferred: stdin 0, stdout 0, stderr 71 bytes in 0.0 seconds debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 21899.9 debug1: Exit status -1 It seems that the authentication goes well, but thje freebsd side close the connection just before to begin the interactive session. What do you think about it? Bug? Paolo
> ...this only happen if Itry to login as root... I think, that you should login as user i.e. "paolo" and then make "su" to root. No need to change your configuration. ZK
Am Montag, 29. Dezember 2003 12:19 schrieb paolo.pisati@tin.it:> Hi guys, > > i've problem trying to login on a freebsd-stable box using ssh and pub key > authentication. > > If i try to login from a linux box i got this msg in my log: > > fatal: monitor_read: unsupported request: 24 > > this only happen if i try to login as root and the pub key is correct > (cause i used it with other account). > > Any idea on how to solve it?I had the same problem, just compile ssh from source (/usr/src) and reinstall it, which solved my problem of "fatal: monitor_read: unsupported request: 24" -- /\/\ichael Ranner mranner@inode.at - mranner@jawa.at - mranner@bugat.at ----------------------------------------------------- BSD Usergroup Austria - http://www.bugat.at/ -----BEGIN GEEK CODE BLOCK----- GIT/CS/AT dx(-) s+:(++:) a- C++ UBLVS++++$ P++>+++$ L-(+)$ E--- W+++$ N+(++) o-- K- w--()$ O-(--) M@ V-(--) PS+>++ PE(-) Y+ PGP(-) t+ 5+ X+++(++++) R* tv++ b+(++) DI++ D-(--) G- e h--(*) r++ y? ------END GEEK CODE BLOCK------