From owner-freebsd-stable@FreeBSD.ORG Fri Nov 12 20:12:15 2004 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4516A16A4D0; Fri, 12 Nov 2004 20:12:15 +0000 (GMT) Received: from zaphod.nitro.dk (port324.ds1-khk.adsl.cybercity.dk [212.242.113.79]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7009B43D31; Fri, 12 Nov 2004 20:12:14 +0000 (GMT) (envelope-from simon@zaphod.nitro.dk) Received: by zaphod.nitro.dk (Postfix, from userid 3000) id F2C51119C7; Fri, 12 Nov 2004 21:12:12 +0100 (CET) Date: Fri, 12 Nov 2004 21:12:12 +0100 From: "Simon L. Nielsen" To: freebsd-stable@freebsd.org Message-ID: <20041112201212.GB772@zaphod.nitro.dk> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="s/l3CgOIzMHHjg/5" Content-Disposition: inline User-Agent: Mutt/1.5.6i cc: Dag-Erling Smorgrav Subject: sshd stops accepting connections X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Nov 2004 20:12:15 -0000 --s/l3CgOIzMHHjg/5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello Today I suddenly couldn't log in via ssh to a server I upgraded to FreeBSD 5.3-RELEASE 4 days ago. When I tried connect to port 22 using telnet(1) the following just happend: [simon@zaphod:~] telnet 192.168.3.2 22 Trying 192.168.3.2... Connected to jet.nitro.dk. Escape character is '^]'. Connection closed by foreign host. The servar had been running FreeBSD 5.2.1 for a while without problems. After logging in on the console and sending the sshd master process a -HUP I could log in again (and I get the normal banner when connecting to the port with telnet(1)). I can't rally see in the log what happened, but there is a lot of "stale" sshd's hanging around, like: root 46015 0,0 0,4 4928 2220 ?? I Ons08pm 0:00,01 sshd: blah [= pam] (sshd) root 58286 0,0 0,4 4920 2236 ?? Is Tor12pm 0:00,04 sshd: pascal= [priv] (sshd) sshd 58287 0,0 0,0 0 0 ?? Z Tor12pm 0:00,03 root 58288 0,0 0,4 4928 2236 ?? I Tor12pm 0:00,01 sshd: pascal= [pam] (sshd) root 58932 0,0 0,4 4920 2236 ?? Is Tor01pm 0:00,05 sshd: ole_gu= diksen [priv] (sshd) sshd 58934 0,0 0,0 0 0 ?? Z Tor01pm 0:00,06 root 58935 0,0 0,4 4928 2236 ?? I Tor01pm 0:00,01 sshd: ole_gu= diksen [pam] (sshd) pstree show the connection between some of the processes like this: | |-+=3D 58286 root sshd: pascal [priv] (sshd) | | |--- 58287 sshd | | \--- 58288 root sshd: pascal [pam] (sshd) =46rom all.log: Nov 11 12:04:38 nfishbone sshd[58286]: fatal: Timeout before authentication= for 82.211.207.191 Nov 11 13:02:34 nfishbone sshd[58932]: fatal: Timeout before authentication= for 192.38.66.33 The only odd thing I could find in the logs with regard to ssh was a few lines like: Nov 11 22:35:49 nfishbone sshd[62378]: syslogin_perform_logout: logout() re= turned an error I don't use any kind of "exotic" authentication on the system, only standard unix password file and ssh-keys. Does anybody have an idea of what's going on here, and if it's a ssh bug or something silly I have done? --=20 Simon L. Nielsen FreeBSD Documentation Team --s/l3CgOIzMHHjg/5 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.6 (FreeBSD) iD8DBQFBlRkch9pcDSc1mlERAnD6AJ9EuyAHH4QnhmbCM6edjBEH2C7XwACgl9qQ XpO7a+aEcvDK189ERBFai+E= =5w1i -----END PGP SIGNATURE----- --s/l3CgOIzMHHjg/5--