--nextPart3355730.zLLa4Vl0jy
Content-Type: text/plain;
charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

Hi!
we stumbled into a nasty problem.

After feisty-upgrade the ssh connect to a dapper server is becoming=20
unstable.

Sometimes it works - sometimes not. FAQ and other resources are not=20
helpful here.

Example of working try:
> jojo@pc2:~$ ssh server
> Last login: Thu Sep 20 12:12:00 2007 from pc2.s.automatix.de on pts/6
> Linux server 2.6.17.13-ax #1 SMP Tue Sep 19 16:17:15 CEST 2006 i686 >=20

GNU/Linux
> Unbuntu Dapper 6.06 Release + Universe + Multiverse
> You have new mail.
> jojo@server:~$ date
> Mo 1 Okt 12:02:14 CEST 2007
> jojo@server:~$ logout
> Connection to server closed.
> jojo@pc2:~$ ssh server

=2E.. long time nothing happens. Ctrl-C

After that I tried out a debug output:
>jojo@pc2:~$ date
>Mo 1. Okt 12:04:45 CEST 2007
>jojo@pc2:~$ ssh -vvvv server
>OpenSSH_4.3p2 Debian-8ubuntu1, OpenSSL 0.9.8c 05 Sep 2006
>debug1: Reading configuration data /etc/ssh/ssh_config
>debug1: Applying options for *
>debug2: ssh_connect: needpriv 0
>debug1: Connecting to server [192.168.11.1] port 22.
>debug2: fd 3 setting O_NONBLOCK
>debug1: fd 3 clearing O_NONBLOCK
>debug1: Connection established.
>debug1: identity file /home/jojo/.ssh/identity type -1
>debug1: identity file /home/jojo/.ssh/id_rsa type -1
>debug3: Not a RSA1 key file /home/jojo/.ssh/id_dsa.
>debug2: key_type_from_name: unknown key type '-----BEGIN'
>debug3: key_read: missing keytype
>debug3: key_read: missing whitespace
>repeaten many times<
>debug2: key_type_from_name: unknown key type '-----END'
>debug3: key_read: missing keytype
>debug1: identity file /home/jojo/.ssh/id_dsa type 2
>debug1: Remote protocol version 2.0, remote software version=20
>OpenSSH_4.2p1 Debian-7ubuntu3.1
>debug1: match: OpenSSH_4.2p1 Debian-7ubuntu3.1 pat OpenSSH*
>debug1: Enabling compatibility mode for protocol 2.0
>debug1: Local version string SSH-2.0-OpenSSH_4.3p2 Debian-8ubuntu1
>debug2: fd 3 setting O_NONBLOCK
>debug1: SSH2_MSG_KEXINIT sent
>debug1: SSH2_MSG_KEXINIT received
>debug2: kex_parse_kexinit:=20
>diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hell=

man-group1-sha1
>debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
>debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,a=

rcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu=
=2Ese,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,=

arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.li=
u.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd1=

60@openssh.com,hmac-sha1-96,hmac-md5-96
>debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd16=

0@openssh.com,hmac-sha1-96,hmac-md5-96
>debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
>debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
>debug2: kex_parse_kexinit:
>debug2: kex_parse_kexinit:
>debug2: kex_parse_kexinit: first_kex_follows 0
>debug2: kex_parse_kexinit: reserved 0
>debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hell=

man-group14-sha1,diffie-hellman-group1-sha1
>debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
>debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,ar=

cfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.=
se,aes128-ctr,aes192-ctr,aes256-ctr
>debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,ar=

cfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.=
se,aes128-ctr,aes192-ctr,aes256-ctr
>debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd16=

0@openssh.com,hmac-sha1-96,hmac-md5-96
>debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd16=

0@openssh.com,hmac-sha1-96,hmac-md5-96
>debug2: kex_parse_kexinit: none,zlib@openssh.com
>debug2: kex_parse_kexinit: none,zlib@openssh.com
>debug2: kex_parse_kexinit:
>debug2: kex_parse_kexinit:
>debug2: kex_parse_kexinit: first_kex_follows 0
>debug2: kex_parse_kexinit: reserved 0
>debug2: mac_init: found hmac-md5
>debug1: kex: server->client aes128-cbc hmac-md5 none
>debug2: mac_init: found hmac-md5
>debug1: kex: client->server aes128-cbc hmac-md5 none
>debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
>debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
>debug2: dh_gen_key: priv key bits set: 129/256
>debug2: bits set: 548/1024
>debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
>debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
>debug3: check_host_in_hostfile: filename /home/jojo/.ssh/known_hosts
>debug3: check_host_in_hostfile: match line 3
>debug3: check_host_in_hostfile: filename /home/jojo/.ssh/known_hosts
>debug3: check_host_in_hostfile: match line 37
>debug1: Host 'server' is known and matches the RSA host key.
>debug1: Found key in /home/jojo/.ssh/known_hosts:3
>debug2: bits set: 521/1024
>debug1: ssh_rsa_verify: signature correct
>debug2: kex_derive_keys
>debug2: set_newkeys: mode 1
>debug1: SSH2_MSG_NEWKEYS sent
>debug1: expecting SSH2_MSG_NEWKEYS
>debug2: set_newkeys: mode 0
>debug1: SSH2_MSG_NEWKEYS received
>debug1: SSH2_MSG_SERVICE_REQUEST sent
>debug2: service_accept: ssh-userauth
>debug1: SSH2_MSG_SERVICE_ACCEPT received

=20
and nothing more hapens.
I presume, ssh in feisty is broken.

Can anyone confirm this ?

TIA
J. Sauer
=2D-=20
J=C3=BCrgen Sauer - automatiX GmbH, +49-4209-4699, juergen.sauer@automatix.=
de
Das Linux Systemhaus - Service - Support - Server - L=C3=B6sungen
Gesch=C3=A4ftsf=C3=BChrer (Managing Director): J=C3=BCrgen Sauer,=20
Gerichtstand: Amtsgericht Walsrode =E2=80=A2 HRB 120986
Ust-Id: DE191468481 =E2=80=A2 St.Nr.: 36/201/14198

--nextPart3355730.zLLa4Vl0jy
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQBHAMfJW7UKI9EqarERAovkAKCXp8IqShyqECS5PhCQOq a2qMwnxACg2hZr
ahYYVRCaOy/VjaVPK2wbBq4=
=cK0N
-----END PGP SIGNATURE-----

--nextPart3355730.zLLa4Vl0jy--