From owner-freebsd-stable@FreeBSD.ORG  Wed Jan 12 00:29:43 2005
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A0A8116A4CE
	for <freebsd-stable@freebsd.org>;
	Wed, 12 Jan 2005 00:29:43 +0000 (GMT)
Received: from digger1.defence.gov.au (digger1.defence.gov.au [203.5.217.4])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1924E43D1F
	for <freebsd-stable@freebsd.org>;
	Wed, 12 Jan 2005 00:29:42 +0000 (GMT)
	(envelope-from wilkinsa@squash.dsto.defence.gov.au)
Received: from ednmsw503.dsto.defence.gov.au (ednmsw503.dsto.defence.gov.au
	[131.185.2.150])
	by digger1.defence.gov.au with ESMTP id j0C0SWIE026435
	for <freebsd-stable@freebsd.org>;
	Wed, 12 Jan 2005 10:58:32 +1030 (CST)
Received: from muttley.dsto.defence.gov.au (unverified) by 
    ednmsw503.dsto.defence.gov.au (Content Technologies SMTPRS 4.3.10) with 
    ESMTP id <T6e72fcd6e983b90296594@ednmsw503.dsto.defence.gov.au> for 
    <freebsd-stable@freebsd.org>; Wed, 12 Jan 2005 10:59:35 +1030
Received: from ednex501.dsto.defence.gov.au 
    (ednex501.dsto.defence.gov.au [131.185.2.81]) by 
    muttley.dsto.defence.gov.au (8.11.3/8.11.3) with ESMTP id j0C0KkQ14276 
    for <freebsd-stable@freebsd.org>; Wed, 12 Jan 2005 10:50:46 +1030 (CST)
Received: from squash.dsto.defence.gov.au ([131.185.40.212]) by 
    ednex501.dsto.defence.gov.au with SMTP 
    (Microsoft Exchange Internet Mail Service Version 5.5.2653.13) id 
    YK370FRZ; Wed, 12 Jan 2005 10:50:29 +1030
Received: from squash.dsto.defence.gov.au (localhost [127.0.0.1]) by 
    squash.dsto.defence.gov.au (8.12.11/8.12.11) with ESMTP id j0C0LIb7038389 
    for <freebsd-stable@freebsd.org>; Wed, 12 Jan 2005 10:51:18 +1030 (CST) 
    (envelope-from wilkinsa@squash.dsto.defence.gov.au)
Received: (from wilkinsa@localhost) by squash.dsto.defence.gov.au 
    (8.12.11/8.12.11/Submit) id j0C0LIO3038388 for freebsd-stable@freebsd.org
    ; Wed, 12 Jan 2005 10:51:18 +1030 (CST) (envelope-from wilkinsa)
Date: Wed, 12 Jan 2005 10:51:18 +1030
From: "Wilkinson, Alex" <alex.wilkinson@dsto.defence.gov.au>
To: freebsd-stable@freebsd.org
Message-ID: <20050112002118.GI37957@squash.dsto.defence.gov.au>
Mail-Followup-To: freebsd-stable@freebsd.org
References: <20050111202909.GC773@zaphod.nitro.dk>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20050111202909.GC773@zaphod.nitro.dk>
User-Agent: Mutt/1.5.6i
Subject: Re: [Solved] Re: sshd stops accepting connections
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Production branch of FreeBSD source code
	<freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Jan 2005 00:29:43 -0000

    0n Wed, Jan 12, 2005 at 06:59:10AM +1030, Simon L. Nielsen wrote: 

    >On 2004.11.12 21:12:12 +0100, Simon L. Nielsen wrote:
    >
    >> Today I suddenly couldn't log in via ssh to a server I upgraded to
    >> FreeBSD 5.3-RELEASE 4 days ago.  When I tried connect to port 22 using
    >> telnet(1) the following just happend:
    >> 
    >> [simon@zaphod:~] telnet 192.168.3.2 22
    >> Trying 192.168.3.2...
    >> Connected to jet.nitro.dk.
    >> Escape character is '^]'.
    >> Connection closed by foreign host.
    >
    >[...]
    >
    >For the archives and anybody who may be interested...
    >
    >There is some kind of bug in OpenSSH 3.8.1p1's sshd (the one shipped
    >with 5.3), possibly related to PAM and Privilege Separation.  The fix
    >for me was simply to install OpenSSH 3.9 from ports, and I haven't had
    >the problem since.

3.9 ?

I have an updated ports collection and ....

# grep -i portv /usr/ports/security/openssh/Makefile 
PORTVERSION=    3.6.1
DISTNAME=       openssh-${PORTVERSION}
PATCHFILES=     openbsd28_${PORTVERSION}.patch

 - aW