freebsd stable - Dec 2003 - sshd: fatal: monitor_read: unsupported request: 24

Hi guys,

i've problem trying to login on a freebsd-stable box using ssh and pub key
authentication.

If i try to login from a linux box i got this msg in my log:

fatal: monitor_read: unsupported request: 24

this only happen if i try to login as root and the pub key is correct (cause
i used it with other account).

Any idea on how to solve it?

Thanks.

Paolo

Hi Paolo,

just a short guess,

paolo.pisati@tin.it wrote:
> Hi guys,
> 
> i've problem trying to login on a freebsd-stable box using ssh and pub
key
> authentication.
> 
> If i try to login from a linux box i got this msg in my log:
> 
> fatal: monitor_read: unsupported request: 24
> 
> this only happen if i try to login as root and the pub key is correct
(cause
> i used it with other account).
>
You are sure, that you allowed direct root login via ssh in your FreeBSD 
box, are you ? Because the default installation denies direct root login.
See /etc/ssh/sshd_config the Parameter '#PermitRootLogin no' which is 
the default.
You have to write 'PermitRootLogin yes' to allow it.

FWIW,
Marian

>
>You are sure, that you allowed direct root login via ssh in your FreeBSD
>
>box, are you ? Because the default installation denies direct root login.
>See /etc/ssh/sshd_config the Parameter '#PermitRootLogin no' which
is
>the default.
>You have to write 'PermitRootLogin yes' to allow it.
I did it, and i found this:

OpenSSH_3.4p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: ssh_connect: needpriv 0
debug1: Connecting to web* [192.168.128.*] port 22.
debug1: Connection established.
debug1: identity file /root/.ssh/id_rsa type 1
debug1: identity file /root/.ssh/id_dsa type 2
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.5p1
Free
BSD-20030924
debug1: match: OpenSSH_3.5p1 FreeBSD-20030924 pat OpenSSH*
Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.4p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits set: 122/256
debug1: bits set: 1571/3191
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'web*' is known and matches the DSA host key.
debug1: Found key in /root/.ssh/known_hosts:28
debug1: bits set: 1615/3191
debug1: ssh_dss_verify: signature correct
debug1: kex_derive_keys
debug1: newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: waiting for SSH2_MSG_NEWKEYS
debug1: newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: done: ssh_kex2.
debug1: send SSH2_MSG_SERVICE_REQUEST
debug1: service_accept: ssh-userauth
debug1: got SSH2_MSG_SERVICE_ACCEPT
debug1: authentications that can continue: publickey,password,keyboard-interacti
ve
debug1: next auth method to try is publickey
debug1: try pubkey: /root/.ssh/id_rsa
debug1: authentications that can continue: publickey,password,keyboard-interacti
ve
debug1: try pubkey: /root/.ssh/id_dsa
debug1: input_userauth_pk_ok: pkalg ssh-dss blen 433 lastkey 0x8098300 hint
1
debug1: read PEM private key done: type DSA
debug1: ssh-userauth2 successful: method publickey
debug1: fd 5 setting O_NONBLOCK
debug1: channel 0: new [client-session]
debug1: send channel open 0
debug1: Entering interactive session.
debug1: channel_free: channel 0: client-session, nchannels 1
debug1: fd 1 clearing O_NONBLOCK
Connection to web* closed by remote host.
Connection to web* closed.
debug1: Transferred: stdin 0, stdout 0, stderr 71 bytes in 0.0 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 21899.9
debug1: Exit status -1

It seems that the authentication goes well, but thje freebsd side close
the connection just before to begin the interactive session.

What do you think about it? Bug?

Paolo

> ...this only happen if I
try to login as root...

I think, that you should
login as user i.e. "paolo"
and then make "su" to root.
No need to change your
configuration.

            ZK

Am Montag, 29. Dezember 2003 12:19 schrieb
paolo.pisati@tin.it:
> Hi guys,
>
> i've problem trying to login on a freebsd-stable box using ssh and pub
key
> authentication.
>
> If i try to login from a linux box i got this msg in my log:
>
> fatal: monitor_read: unsupported request: 24
>
> this only happen if i try to login as root and the pub key is correct
> (cause i used it with other account).
>
> Any idea on how to solve it?
I had the same problem, just compile ssh from source (/usr/src) and
reinstall it, which solved my problem of "fatal: monitor_read: unsupported 
request: 24"

-- 
/\/\ichael Ranner

mranner@inode.at - mranner@jawa.at - mranner@bugat.at
-----------------------------------------------------
   BSD Usergroup Austria - http://www.bugat.at/

-----BEGIN GEEK CODE BLOCK-----
GIT/CS/AT dx(-) s+:(++:) a- C++ UBLVS++++$ P++>+++$ L-(+)$ E---
W+++$ N+(++) o-- K- w--()$ O-(--) M@ V-(--) PS+>++ PE(-) Y+ PGP(-)
t+ 5+ X+++(++++) R* tv++ b+(++) DI++ D-(--) G- e h--(*) r++ y?
------END GEEK CODE BLOCK------