Hi all.
I have a *strange* problem with my Solaris 10 installation.
Simply put, the ssh daemon does *not* allow *any* user to connect via
SFTP, even if I have placed the line:
"Subsystem sftp /usr/lib/ssh/sftp-server" in my
/etc/sshd/sshd_config file.
The client reports a "error 128" when someone tries to connect, but the
connection doesn't start.
Strange is that if I comment the above line the connection *is* accepted!
(gulp!)
By the way,... the "normal" ssh connection *does* work,... I really do not
understand why it refuses the sftp connection.
Can someone help me to resolve this mystery?
P.S. I do not have any firewall active (the connection generates from my
internal network),...
I Googled and googled without any results...
Thanks a lot.
Patata.
|
|
0
|
|
|
|
Reply
|
 Patata
|
9/1/2009 6:54:04 PM |
|
On 1 Sep., 20:54, Patata Kid <n...@none.com> wrote:
> Hi all.
> I have a *strange* problem with my Solaris 10 installation.
>
*snip*
> The client reports a "error 128" when someone tries to connect, but the
> connection doesn't start.
> Strange is that if I comment the above line the connection *is* accepted!
> (gulp!)
That is indeed weird - Is it possble that you forgot to restart sshd
once or so?
|
|
|
0
|
|
|
|
Reply
|
claus
|
9/1/2009 10:10:09 PM
|
|
On Sep 1, 7:54=A0pm, Patata Kid <n...@none.com> wrote:
> Hi all.
> I have a *strange* problem with my Solaris 10 installation.
>
> Simply put, the ssh daemon does *not* allow *any* user to connect via
> SFTP, even if I have placed the line:
> "Subsystem =A0 =A0 =A0 sftp =A0 /usr/lib/ssh/sftp-server" in my
> /etc/sshd/sshd_config file.
>
> The client reports a "error 128" when someone tries to connect, but the
> connection doesn't start.
> Strange is that if I comment the above line the connection *is* accepted!
> (gulp!)
>
> By the way,... the "normal" ssh connection *does* work,... I really do no=
t
> understand why it refuses the sftp connection.
>
> Can someone help me to resolve this mystery?
>
> P.S. I do not have any firewall active (the connection generates from my
> internal network),...
>
> I Googled and googled without any results...
>
> Thanks a lot.
>
> Patata.
what is does svcs | grep ssh tell you ?
|
|
|
0
|
|
|
|
Reply
|
Zfs
|
9/1/2009 11:08:17 PM
|
|
On 2 Sep., 01:08, "Zfs.." <cian.scrip...@gmail.com> wrote:
> On Sep 1, 7:54=A0pm, Patata Kid <n...@none.com> wrote:
>
>
>
> > Hi all.
> > I have a *strange* problem with my Solaris 10 installation.
>
> > Simply put, the ssh daemon does *not* allow *any* user to connect via
> > SFTP, even if I have placed the line:
> > "Subsystem =A0 =A0 =A0 sftp =A0 /usr/lib/ssh/sftp-server" in my
> > /etc/sshd/sshd_config file.
>
> > The client reports a "error 128" when someone tries to connect, but the
> > connection doesn't start.
> > Strange is that if I comment the above line the connection *is* accepte=
d!
> > (gulp!)
>
> > By the way,... the "normal" ssh connection *does* work,... I really do =
not
> > understand why it refuses the sftp connection.
Oh, I have an idea ...
With what tool do you connect?
Is it possible that you only allow connecting via ssh 2 and that sftp
client connects try to authenticate via ssh1?
|
|
|
0
|
|
|
|
Reply
|
claus
|
9/2/2009 8:33:12 AM
|
|
On Tue, 01 Sep 2009 15:10:09 -0700, claus.kick@googlemail.com wrote:
> That is indeed weird - Is it possble that you forgot to restart sshd
> once or so?
Hi,... thanks to you too.
No, I did not forget to restart the service, in fact it is running.
I really do not know where could be the reason of the problem...
By the way,... some time ago the sftp connection DID work,...
|
|
|
0
|
|
|
|
Reply
|
Patata
|
9/2/2009 6:14:23 PM
|
|
On Tue, 01 Sep 2009 16:08:17 -0700, Zfs.. wrote:
> what is does svcs | grep ssh tell you ?
well,... the service is "up and running..."
online 19:21:16 svc:/network/ssh:default
|
|
|
0
|
|
|
|
Reply
|
Patata
|
9/2/2009 6:14:23 PM
|
|
On Wed, 02 Sep 2009 01:33:12 -0700, claus.kick@googlemail.com wrote:
mmm,... I did not think to this aspect,... I use WinSCP to connect to
Solaris.
Thanks for the suggestion,... I will investigate.
> Oh, I have an idea ...
>
> With what tool do you connect?
>
> Is it possible that you only allow connecting via ssh 2 and that sftp
> client connects try to authenticate via ssh1?
|
|
|
0
|
|
|
|
Reply
|
Patata
|
9/2/2009 6:14:25 PM
|
|
Patata Kid wrote:
> By the way,... some time ago the sftp connection DID work,...
Are you sure that the file /usr/lib/ssh/sftp-server exists?
Also, you could put that line in the config file, then truss the ssh
daemon, connect with the sftp client and see what happens.
--
.-. .-. Yes, I am an agent of Satan, but my duties are largely
(_ \ / _) ceremonial.
|
| dave@fly.srk.fer.hr
|
|
|
0
|
|
|
|
Reply
|
Drazen
|
9/2/2009 6:42:38 PM
|
|
On Sep 1, 1:54=A0pm, Patata Kid <n...@none.com> wrote:
> Can someone help me to resolve this mystery?
Run a copy sshd on its own port in debugging mode, like:
sshd -d -p 1234
This will sit there instead of going into the background. Then, try
your SCP to the port (in the above example, port 1234 instead of 22).
You'll see debugging messages scroll on the screen which will help you
debug the problem.
I think your sshd is only allowing Protocol 2 (which it should!) and
that your winscp only does protocol 1.
|
|
|
0
|
|
|
|
Reply
|
Jim
|
9/3/2009 12:29:35 PM
|
|
On 3 Sep., 14:29, Jim Leonard <mobyga...@gmail.com> wrote:
> I think your sshd is only allowing Protocol 2 (which it should!) and
> that your winscp only does protocol 1.
WinSCP does allowe for Protocol 2, I think the default setting is 1
only.
|
|
|
0
|
|
|
|
Reply
|
claus
|
9/3/2009 12:53:23 PM
|
|
Hi all again.
I have just discovered why the ssh daemon didn't start the sftp subsystem.
The problem was in the configuration file of bash (.bashrc) witch was (is)
the default shell for the accounts used to connect.
Another person for some unknown (to me!) reasons added the line "sttys
-istrip" at the end of that file.
For this reason the client was unable to open the connection,... I suppose
the client was at fault because I read "connection closed by client" in the
sshd log.
Removed the line and all is OK now,... I have just to discover why is wad
added! :-)
Hope this could be helpful to someone...
Kind regard to all and, anyway, thanks for the answers!
"Patata Kid" <none@none.com> ha scritto nel messaggio
news:pan.2009.09.01.18.54.04.411794@none.com...
> Hi all.
> I have a *strange* problem with my Solaris 10 installation.
>
> Simply put, the ssh daemon does *not* allow *any* user to connect via
> SFTP, even if I have placed the line:
> "Subsystem sftp /usr/lib/ssh/sftp-server" in my
> /etc/sshd/sshd_config file.
>
> The client reports a "error 128" when someone tries to connect, but the
> connection doesn't start.
> Strange is that if I comment the above line the connection *is* accepted!
> (gulp!)
>
> By the way,... the "normal" ssh connection *does* work,... I really do not
> understand why it refuses the sftp connection.
>
> Can someone help me to resolve this mystery?
>
> P.S. I do not have any firewall active (the connection generates from my
> internal network),...
>
> I Googled and googled without any results...
>
> Thanks a lot.
>
> Patata.
|
|
|
0
|
|
|
|
Reply
|
Patata
|
9/8/2009 5:32:28 PM
|
|
On Sep 8, 10:32=A0am, "Patata Kid" <n...@none.com> wrote:
> Hi all again.
> I have just discovered why the ssh daemon didn't start the sftp subsystem=
..
>
> The problem was in the configuration file of bash (.bashrc) witch was (is=
)
> the default shell for the accounts used to connect.
> Another person for some unknown (to me!) reasons added the line "sttys
> -istrip" at the end of that file.
Thanks for posting your info about the problem. I had a similar issue
from having:
stty stop undef
stty start undef
in my .bashrc file. Removing those fixed the issue.
Seems sftp is more sensitive to the shell environment than ssh.
=3DV=3D
|
|
|
0
|
|
|
|
Reply
|
Velociraptor
|
9/29/2009 10:18:49 PM
|
|
|
11 Replies
526 Views
(page loaded in 0.107 seconds)
Similiar Articles: Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ...Hi all. I have a *strange* problem with my Solaris 10 installation. Simply put, the ssh daemon does *not* allow *any* user to connect via SFTP, even ... SSH installation - PRNG is not seeded - comp.unix.solaris ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... SSH installation - PRNG is not seeded - comp.unix.solaris ... Incoherent ssh daemon in Solaris 10! - comp.unix ... sftp-server logging in solaris 10 - comp.unix.solarisIncoherent ssh daemon in Solaris 10! - comp.unix.solaris ..... to use a different facility, e.g.: logger -p daemon.notice message (in a default Solaris setup ... syslog nolisten on Solaris 10 - comp.unix.solarisIncoherent ssh daemon in Solaris 10! - comp.unix.solaris ... FAILED_LOGINS - comp.unix.solaris syslog nolisten on Solaris 10 - comp.unix.solaris SSH ... Does anyone know how to configure SNMP on solaris 10? - comp.unix ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... Does anyone know how to configure SNMP on solaris 10? - comp.unix ... Incoherent ssh daemon in Solaris 10 ... Solaris 10 sftp problem - comp.unix.solarisIncoherent ssh daemon in Solaris 10! - comp.unix.solaris ... Hi all. I have a *strange* problem with my Solaris 10 installation. Simply put, the ssh daemon does *not ... forwarding syslog to remote machine, getting no hostname - comp ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... forwarding syslog to remote machine, getting no hostname - comp ..... err;auth.notice @172.16.60.36 *.err ... Problem when multiple SCP connections in Solaris 10 - ssh_exchange ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... ssh_exchange_identification: Connection closed by remote host ... Problem when multiple SCP connections in ... ssh_exchange_identification: Connection closed by remote host ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... ssh_exchange_identification: Connection closed by remote host ... We have two Solaris 10 servers (A & B) setup ... 10 free SysAdmin tools - comp.unix.solarisTen free, and perhaps useful SysAdmin tools are humbly offered to all Linux, Solaris (SPARC), and Solaris x86 aficionados at 65.12.128.98... in the ... SYSLOG_FAILED_LOGINS - comp.unix.solarisIncoherent ssh daemon in Solaris 10! - comp.unix.solaris ... syslog nolisten on Solaris 10 - comp.unix.solaris SYSLOG_FAILED_LOGINS - comp.unix.solaris syslog nolisten on ... Identification of sshd_config file - comp.unix.solarisIncoherent ssh daemon in Solaris 10! - comp.unix.solaris ..... line: > "Subsystem sftp /usr/lib/ssh/sftp-server" in my > /etc/sshd/sshd_config file ... Solaris 10 BSM Auditing help - comp.unix.solarisIncoherent ssh daemon in Solaris 10! - comp.unix.solaris ... I have a *strange* problem with my Solaris 10 installation. Simply put, the ssh daemon ... solaris 10u8 restarter restarted in zone for unknown reason ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... solaris 10u8 restarter restarted in zone for unknown reason ..... Solaris 10 10/09 s ... How do enable an ssh server in a zone? - comp.unix.solaris ...I've just installed a zone in Solaris 10 update 6 on a Blade 2000, but I can't see to get the ssh server running. First I check if it is online # s... Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ...Hi all. I have a *strange* problem with my Solaris 10 installation. Simply put, the ssh daemon does *not* allow *any* user to connect via SFTP, even ... SSH installation - PRNG is not seeded - comp.unix.solaris ...Incoherent ssh daemon in Solaris 10! - comp.unix.solaris ... SSH installation - PRNG is not seeded - comp.unix.solaris ... Incoherent ssh daemon in Solaris 10! - comp.unix ... 7/24/2012 1:17:42 PM
|
Search |
Post Question |
Groups |
Stream |
About |
Register
78 followers. 