Mail Archives: cygwin/2013/07/12/12:22:54

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/2013/07/12/12:22:54

X-Recipient: archive-cygwin AT delorie DOT com

DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:date:from:to:cc:subject:in-reply-to:message-id

:references:mime-version:content-type; q=dns; s=default; b=VatNz

tGGrx4ZiW9fSayivCA0IY7r3KhDR0gKfGqNDVRJ6UjqqTEnG6tPrnBDYBW6/BgYr

uYwHV2gBYyiEzOY92hklQsR0mXB6RQJBE24ovOGgsqHF8pYZ005QzZl5dqcGCaPF

lHmG7Pzf65YQv/8T2ixfXLRzYtqhmUqM9yR4pU=

DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id

:list-unsubscribe:list-subscribe:list-archive:list-post

:list-help:sender:date:from:to:cc:subject:in-reply-to:message-id

:references:mime-version:content-type; s=default; bh=Pd8yMyUCivt

8OREfTa+lfIhjBgM=; b=vAikHqIUlQ3b+35HdEnuYGYhPG/A8ZxPiGvQK+XgevT

LiXX4y32qLw+RZ5rEAjvs695I6PBsyuadp+5Z23/YIlz49qkcR9fj2ee2zOQ8Ut0

k0e2Jevm+qzT7gMw3p8/YPGcOZlwkG34+9CIBN8Zl/vmyVYn1P5GszQ70txhHYaQ

=

Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm

List-Id: <cygwin.cygwin.com>

List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>

List-Archive: <http://sourceware.org/ml/cygwin/>

List-Post: <mailto:cygwin AT cygwin DOT com>

List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>

Sender: cygwin-owner AT cygwin DOT com

Mail-Followup-To: cygwin AT cygwin DOT com

Delivered-To: mailing list cygwin AT cygwin DOT com

X-Spam-SWARE-Status: No, score=0.8 required=5.0 tests=KHOP_THREADED,RDNS_NONE,SPF_HELO_PASS,SPF_PASS,URIBL_BLOCKED autolearn=no version=3.3.1

Date: Fri, 12 Jul 2013 11:15:19 -0500 (CDT)

From: "L. V. Lammert" <lvl AT omnitec DOT net>

To: Andrew Schulman <schulman DOT andrew AT epamail DOT epa DOT gov>

cc: cygwin AT cygwin DOT com

Subject: Re: Troubleshooting AutoSSH

In-Reply-To: <tm1vt8pl995u8nvkpebtmbrc0tq3jjmggh@4ax.com>

Message-ID: <Pine.BSO.4.53.1307121055000.32610@Mail.omnitec.net>

References: <Pine DOT BSO DOT 4 DOT 53 DOT 1307111701260 DOT 32610 AT Mail DOT omnitec DOT net> <tm1vt8pl995u8nvkpebtmbrc0tq3jjmggh AT 4ax DOT com>

MIME-Version: 1.0

X-SPAM-Info: Omnitec Corporation MailScanner

X-SPAM-MailScanner: Found to be clean

On Fri, 12 Jul 2013, Andrew Schulman wrote:

> > Trying to debug a session, .. neither AUTOSSH_DEBUG nor AUTOSSH_LOGLEVEL:
> >
> > $ env | grep AUTO
> > AUTOSSH_DEBUG=1
> > AUTOSSH_LOGLEVEL=7
> >
> > nor -vv:
> >
> > cygrunsrv -I AutoSSH -f "remote_link" -p /usr/bin/autossh -a " -vv \
> >
> > change the logging info always ("Host key verification filed"); what is
> > the correct way to increase the log level?
>
> Your command line looks wrong.  Did it get cut off?
>
Yes, I only included the first half where I inserted the "-vv", which does
not work. The entire command works on other systems, so that is not the
problem.

The problem is, nothing seems to raise the debug level for autossh when
starting as a service, .. [see below].

> (1) Get the ssh command working.
>
Works fine, .. keys setup.

> (2) Get the autossh command working.
>
Bingo - looks like -v *DOES* work when starting as a user! ON startup:

$ autossh -v -M 5661:6661 -N -R 4661:127.0.0.1:2206
wtadmin AT nagios DOT winningtech DOT com
2013/07/12 11:10:09 autossh[5128]: checking for grace period, tries = 0
2013/07/12 11:10:09 autossh[5128]: starting ssh (count 1)
2013/07/12 11:10:09 autossh[5128]: ssh child pid is 5060
2013/07/12 11:10:09 autossh[5128]: check on child 5060
2013/07/12 11:10:09 autossh[5128]: set alarm for 600 secs
2013/07/12 11:10:09 autossh[5060]: execing /usr/bin/ssh
OpenSSH_6.2p2, OpenSSL 1.0.1e 11 Feb 2013
debug1: Reading configuration data /etc/ssh_config
debug1: Connecting to <remote server> [<IP>] port 2206.
debug1: Connection established.
debug1: identity file /home/<admin user>/.ssh/id_rsa type 1
debug1: identity file /home/<admin user>/.ssh/id_rsa-cert type -1
debug1: identity file /home/<admin user>/.ssh/id_dsa type -1
debug1: identity file /home/<admin user>/.ssh/id_dsa-cert type -1
debug1: identity file /home/<admin user>/.ssh/id_ecdsa type -1
debug1: identity file /home/<admin user>/.ssh/id_ecdsa-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.2
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.8
debug1: match: OpenSSH_5.8 pat OpenSSH_5*
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ECDSA
70:5c:35:ee:86:19:23:15:32:1a:e7:d6:99:95:9a:e4
debug1: Host '[<remote server>]:2206' is known and matches the ECDSA host key.
debug1: Found key in /home/<admin user>n/.ssh/known_hosts:1
debug1: ssh_ecdsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Offering RSA public key: /home/<admin user>/.ssh/id_rsa
debug1: Server accepts key: pkalg ssh-rsa blen 279
debug1: read PEM private key done: type RSA
debug1: Authentication succeeded (publickey).
Authenticated to <remote server> ([<IP>]:2206).
debug1: Local connections to LOCALHOST:5661 forwarded to remote address
127.0.0.1:6661
debug1: Local forwarding listening on ::1 port 5661.
				  ^^^^^^^^^

<connection attempt fails with "Connection closed by ::1">!!!!

It looks like the problem is that AutoSSH is binding to IPV6, *NOT*
IPv4! sshd is set to "AddressFamily inet", .. so the problem appears to be
that AutoSSH is not binding properly.

Don't see anything in the man pages or a quick search, .. how would one
force AutoSSH to bind to IPv4? IPV6 is installed on this box, but not
used.

	Thanks!!!!

	Lee

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

X-Recipient:	archive-cygwin AT delorie DOT com
DomainKey-Signature:	a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:date:from:to:cc:subject:in-reply-to:message-id
	:references:mime-version:content-type; q=dns; s=default; b=VatNz
	tGGrx4ZiW9fSayivCA0IY7r3KhDR0gKfGqNDVRJ6UjqqTEnG6tPrnBDYBW6/BgYr
	uYwHV2gBYyiEzOY92hklQsR0mXB6RQJBE24ovOGgsqHF8pYZ005QzZl5dqcGCaPF
	lHmG7Pzf65YQv/8T2ixfXLRzYtqhmUqM9yR4pU=
DKIM-Signature:	v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:date:from:to:cc:subject:in-reply-to:message-id
	:references:mime-version:content-type; s=default; bh=Pd8yMyUCivt
	8OREfTa+lfIhjBgM=; b=vAikHqIUlQ3b+35HdEnuYGYhPG/A8ZxPiGvQK+XgevT
	LiXX4y32qLw+RZ5rEAjvs695I6PBsyuadp+5Z23/YIlz49qkcR9fj2ee2zOQ8Ut0
	k0e2Jevm+qzT7gMw3p8/YPGcOZlwkG34+9CIBN8Zl/vmyVYn1P5GszQ70txhHYaQ
	=
Mailing-List:	contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id:	<cygwin.cygwin.com>
List-Subscribe:	<mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive:	<http://sourceware.org/ml/cygwin/>
List-Post:	<mailto:cygwin AT cygwin DOT com>
List-Help:	<mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender:	cygwin-owner AT cygwin DOT com
Mail-Followup-To:	cygwin AT cygwin DOT com
Delivered-To:	mailing list cygwin AT cygwin DOT com
X-Spam-SWARE-Status:	No, score=0.8 required=5.0 tests=KHOP_THREADED,RDNS_NONE,SPF_HELO_PASS,SPF_PASS,URIBL_BLOCKED autolearn=no version=3.3.1
Date:	Fri, 12 Jul 2013 11:15:19 -0500 (CDT)
From:	"L. V. Lammert" <lvl AT omnitec DOT net>
To:	Andrew Schulman <schulman DOT andrew AT epamail DOT epa DOT gov>
cc:	cygwin AT cygwin DOT com
Subject:	Re: Troubleshooting AutoSSH
In-Reply-To:	<tm1vt8pl995u8nvkpebtmbrc0tq3jjmggh@4ax.com>
Message-ID:	<Pine.BSO.4.53.1307121055000.32610@Mail.omnitec.net>
References:	<Pine DOT BSO DOT 4 DOT 53 DOT 1307111701260 DOT 32610 AT Mail DOT omnitec DOT net> <tm1vt8pl995u8nvkpebtmbrc0tq3jjmggh AT 4ax DOT com>
MIME-Version:	1.0
X-SPAM-Info:	Omnitec Corporation MailScanner
X-SPAM-MailScanner:	Found to be clean