X-Spam-Check-By: sourceware.org
To: cygwin AT cygwin DOT com
From: =?ISO-8859-1?Q?Ren=E9_Berber?= <r DOT berber AT computer DOT org>
Subject:  Re: sshd+ssh localhost connects, but don't reach the shell
Date:  Tue, 30 May 2006 12:25:01 -0500
Lines: 49
Message-ID: <e5hv5c$f7c$1@sea.gmane.org>
References:  <e5gfde$28v$1 AT sea DOT gmane DOT org> <BAY114-F67E15A317E01816880FC8BF920 AT phx DOT gbl>
Mime-Version:  1.0
Content-Type:  text/plain; charset=ISO-8859-1
Content-Transfer-Encoding:  quoted-printable
User-Agent: Thunderbird 1.5.0.2 (Windows/20060308)
In-Reply-To: <BAY114-F67E15A317E01816880FC8BF920@phx.gbl>
OpenPGP: url=hkp://random.sks.keyserver.penguin.de
X-IsSubscribed: yes
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
Precedence: bulk
List-Unsubscribe: <mailto:cygwin-unsubscribe-archive-cygwin=delorie DOT com AT cygwin DOT com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com

Vilar Camara wrote:
[snip]
>> The symptoms do appear like a firewall issue like Larry Hall said,
>=20
> This is always a point to be rechecked. I just did it:
> - All ssh.exe, ssh2.exe (Windows GUI client) and sshd.exe have full
> permissions set to access and server;
> - Logging on, but no log entries about these programs being blocked.
>=20
> Anyway, as I said before, all my tests were performed with firewall not
> running. Should I try, for the sake of completeness, uninstalling it?

No, have you tested with the Windows firewall running?
(I'm using sshd with the firewall, only C:\Cygwin\sbin\sshd.exe is in the
exceptions, no putty, which works fine, or anything else)

[snip]
>> If ping works, try "telnet 127.0.0.1 22" (use the numeric IP address)
>> you should
>> see "SSH-2.0-OpenSSH_4.3", then type anything and you'll get "Protocol
>> mismatch." and the connection is closed.
>=20
> Good point. I ran it, but got no response at all (telnet screen remains
> blank). Also (just to check) it doesn't work if service is down. So,
> everything is pointing towards a failure in the server side.

Now try: netstat -anbv | grep -B 1 -A 2 ":22"
should show only sshd.exe listening.

Also check: ps -a | grep sshd
before and during a test.  Is the UID 18? does the process have any suspend=
 flags?

During a test, the second sshd process is the interesting one, you could tr=
y to
see what is doing (when it appears to be stuck) by using: strace -p $PID
where the process id is from the above ps -a.

A side note, in all the tests try to run the server normally (i.e.
auto-started), running it by hand is not the same (the process owner may not
have all the required attributes, UID 18 is SYSTEM which should have them).
--=20
Ren=E9 Berber


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/