From owner-freebsd-questions  Tue Apr 23  1:42: 7 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from empty1.ekahuna.com (empty1.ekahuna.com [198.144.200.196])
	by hub.freebsd.org (Postfix) with ESMTP id BD10037B400
	for <questions@FreeBSD.ORG>; Tue, 23 Apr 2002 01:42:02 -0700 (PDT)
Received: from pc-02 (pc02.ekahuna.com [198.144.200.197])
          by empty1.ekahuna.com (Post.Office MTA v3.5.3 release 223
          ID# 0-0U10L2S100V35) with ESMTP id com
          for <questions@FreeBSD.ORG>; Tue, 23 Apr 2002 01:41:57 -0700
From: "Philip J. Koenig" <pjklist@ekahuna.com>
Organization: The Electric Kahuna Organization
To: questions@FreeBSD.ORG
Date: Tue, 23 Apr 2002 01:42:01 -0700
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Subject: SSH questions
Reply-To: pjklist@ekahuna.com
X-mailer: Pegasus Mail for Win32 (v3.12c)
Message-ID: <20020423084157998.AAA719@empty1.ekahuna.com@pc02.ekahuna.com>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I've been having issues recently connecting from one FBSD box to 
another. (4.3-Stable calling a 4.5-Stable box)

1) SSH is timing out after a few minutes of inactivity.  (actually 
I'm getting "connection reset by peer" messages)

The reason I don't think this is a connectivity problem is that both 
boxes are on pretty reliable circuits connected to the same ISP. (ie 
packets between them never hit the internet)

I looked for some "timeout" settings in both /etc/ssh/sshd_config or 
ssh_config and didn't find anything but the "keep alive" setting.  
Are connections supposed to stay alive indefinitely by default?

2) The default ssh_config file appears to have protocol 1 as the 
'default' protocol - or do I misunderstand this field?  Clearly I 
want to use protocol 2 whenever possible because it's supposed to be 
more secure than v1.  This is the line I'm referring to:

	Protocol 1,2

On the 4.3-Stable box those numbers are reversed.. but the line is 
commented-out.

3) Seems like it doesn't do much logging by default. (default syslog 
facility "AUTH", level "Info")  I can see basic stuff in wtmp/lastlog 
but I'd like to log things like SSH protocol version, authentication 
method, etc.  I tried changing "INFO" to "VERBOSE" and sent a HUP to 
sshd but it didn't seem to change much.

Thx,

Phil



--
Philip J. Koenig                                       pjklist@ekahuna.com
Electric Kahuna Systems -- Computers & Communications for the New Millenium


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message