Re: SSH

From: Dimitri Maziuk (dima_at_127.0.0.1)
Date: 10/07/03

• Next message: Rob S: "Re: Segmentation Fault"
• Previous message: Kent Wormsdorf: "Re: Graphic adapters"
• In reply to: Dave Uhring: "Re: SSH"
• Next in thread: Leach: "Re: SSH"
• Reply: Leach: "Re: SSH"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: Tue, 7 Oct 2003 18:04:03 +0000 (UTC)

Dave Uhring sez:
> On Tue, 07 Oct 2003 09:14:19 +0200, UNIX admin wrote:
...
>> Turning debugging on the SSH server and when trying to connect with an
>> OpenSSH client, SSH server will report at least one or more implementation
>> bugs in the negotiating protocol. Perhaps that has been fixed, but I doubt
>> it, since I suspect it's been done on purpose. When using an SSH client to
>> an OpenSSH server, the connection will hang when you log out, because
>> there's apparently some bit about the OpenSSH server not closing some
>> descriptors properly. OpenSSH debugging doesn't pick it up of course, but
>> commercial SSH does.
>
> I did not observe any "hanging" on exit from the ssh session nor has the
> one remote client using SSH.

Consider yourself lucky. About any client will hang on exit with IRIX
OpenSSH 2.9 server. It happens less frequently with newer versions of
OpenSSH & other OSen. It happens more frequently with tunnelled stuff
(e.g. CVS server over ssh) than with plain remote logins.

We had a seriously screwed up system at one time because hanging ssh
connections filled up cron run queue... (and then there's IRIX where
cron run queue size >= process table size. Ouchie.)

The best part is that they're left hanging on purpose & it'll never
be fixed. And OpenSSH folks won't even put a timeout in there.

Dima

-- 
We're sysadmins. Sanity happens to other people.                  -- Chris King

---

• Next message: Rob S: "Re: Segmentation Fault"
• Previous message: Kent Wormsdorf: "Re: Graphic adapters"
• In reply to: Dave Uhring: "Re: SSH"
• Next in thread: Leach: "Re: SSH"
• Reply: Leach: "Re: SSH"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: Explanation of SSH ... I am still unclear on how SSH works exactly. ... Client issues SSH command and names server ... "Shopper" says "server sends back its public host and server keys ... Surely there is only one public key it sends ... (comp.security.ssh) Re: ssh security question ... In my case - the client is a windows client and the ssh is embedded into the windows nx client. ... Is there any reason I can't run ssh-keygen on the server and copy the private key to the client - and the public key to the "authorised" directory? ... sniffer can catch your passwords, and it would make it trivial to log in ... (SSH) Re: Publishing a SSH Server ... Your unix box cannot reply to SSH request, ... Create a client address set for your unix box (ip address from to are the ... Jim Harrison [ISA SE] ... In that case the server is a SecureNET client but still it doesn't work.... ... (microsoft.public.isa.publishing) Re: FC6 VPN ... Then you can run any application you would like off the server by simply running it, or if you want to run a whole session, use gnomesession. ... ssh client that supports X forwarding, which is want you want to be looking at. ... SSH allows you to forward any local port to any remote port. ... If you need to connect to, say a windows share, you would forward your local port to the linux server through the ssh tunnel. ... (Fedora) Re: Password less login between client & server, server & client ... password less logins on both the ssh client and ssh server. ... Login as the user that is making the connection. ... (comp.security.ssh)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(14)