X-Recipient: archive-cygwin AT delorie DOT com DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:from:to:subject:date:message-id:mime-version :content-type; q=dns; s=default; b=lkBIzA+lE6RdD+xiS4MADWmnfpB0K ioQx0ofHzRUMa/919FVhjSV0SvIvgjBhOg8F/mRUtFjrnyQUzcWvZN7qBIEp16NH RPTa+q5TcuOJkq59HyrVMuTRixOiQFqOFeq3t2zeEQ2NBr91gABNZd9smkcJv7/l CXaHLJG+WFbVjE= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id :list-unsubscribe:list-subscribe:list-archive:list-post :list-help:sender:from:to:subject:date:message-id:mime-version :content-type; s=default; bh=rkDspHL4cdY4t+yA2O7f6a8hqPo=; b=h8R Imh/JZETr6eVoH4Yp717VofSGwlMLWWWH8lrjssT2YEnoOjjbXLNczpAH6FHBWre c2qB0Pzvr2LZGijBsDsYmOfBO+JyI4TOgIukEjMDl491/FtApa0k4tBFCxohtY2C 7YX0l7JJ9yuA7Tl4HZtLob4tCfs7TYD6+4/B/WHI= Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=0.4 required=5.0 tests=BAYES_50,FILL_THIS_FORM_FRAUD_PHISH,FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS,T_FILL_THIS_FORM_SHORT autolearn=ham version=3.3.2 X-HELO: mail-pa0-f45.google.com X-Received: by 10.70.88.47 with SMTP id bd15mr144819321pdb.54.1420434111886; Sun, 04 Jan 2015 21:01:51 -0800 (PST) From: "The Sec Maestro" To: Subject: SSH login to cygwin sshd (6.7p1-1) fails with error seteuid1000: Operation not permitted when ~/.ssh/id_rsa keys available on client Date: Sun, 4 Jan 2015 21:01:43 -0800 Message-ID: <009801d028a4$b3921fb0$1ab65f10$@com> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_0099_01D02861.A56EDFB0" ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit SSH Login, using 'tester' account (in Adminstrators group) to the Cygwin sshd server fails from a client machine which has ~/.ssh/id_rsa keys available. Login from the same client, without the id_rsa keys is successful. SSH locally (on cygwin box) is also successful. Comparison of the sshd logs (debugging enabled) of a good vs failure login shows that when id_rsa is enabled on the client, the following in the failure case: debug1: temporarily_use_uid: 1000/513 (e=18/544) seteuid 1000: Operation not permitted This seem to be related to a permission related problem, but cygcheck_output though shows the 'tester' user is member of Administrators group. What I am I missing? Thanks, Novice Cygwin user ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: text/plain; name="cygcheck_output.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="cygcheck_output.txt" Cygwin Configuration Diagnostics Current System Time: Mon Jan 05 04:34:58 2015 Windows 7 Professional Ver 6.1 Build 7601 Service Pack 1 Path: C:\Windows\system32 C:\Windows C:\Windows\System32\Wbem C:\Windows\System32\WindowsPowerShell\v1.0\ Output from C:\cygwin\bin\id.exe UID: 1000(tester) GID: 513(None) 513(None) 0(root) 544(Administrators) 545(Users) SysDir: C:\Windows\system32 WinDir: C:\Windows Here's some environment variables that may affect cygwin: Path =3D 'C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Window= s\System32\WindowsPowerShell\v1.0\' Here's the rest of your environment variables: ALLUSERSPROFILE =3D 'C:\ProgramData' APPDATA =3D 'C:\Users\tester\AppData\Roaming' CommonProgramFiles =3D 'C:\Program Files\Common Files' COMPUTERNAME =3D 'TESTVM181' ComSpec =3D 'C:\Windows\system32\cmd.exe' FP_NO_HOST_CHECK =3D 'NO' HOMEDRIVE =3D 'C:' HOMEPATH =3D '\Users\tester' LOCALAPPDATA =3D 'C:\Users\tester\AppData\Local' LOGONSERVER =3D '\\TESTVM181' NUMBER_OF_PROCESSORS =3D '1' OS =3D 'Windows_NT' PATHEXT =3D '.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC' PROCESSOR_ARCHITECTURE =3D 'x86' PROCESSOR_IDENTIFIER =3D 'x86 Family 6 Model 42 Stepping 7, GenuineIntel' PROCESSOR_LEVEL =3D '6' PROCESSOR_REVISION =3D '2a07' ProgramData =3D 'C:\ProgramData' ProgramFiles =3D 'C:\Program Files' PROMPT =3D '$P$G' PSModulePath =3D 'C:\Windows\system32\WindowsPowerShell\v1.0\Modules\' PUBLIC =3D 'C:\Users\Public' SESSIONNAME =3D 'Console' SystemDrive =3D 'C:' SystemRoot =3D 'C:\Windows' TEMP =3D 'C:\Users\tester\AppData\Local\Temp' TMP =3D 'C:\Users\tester\AppData\Local\Temp' USERDOMAIN =3D 'TESTVM181' USERNAME =3D 'tester' USERPROFILE =3D 'C:\Users\tester' windir =3D 'C:\Windows' windows_tracing_flags =3D '3' windows_tracing_logfile =3D 'C:\BVTBin\Tests\installpackage\csilogfile.log' Scanning registry for keys with 'Cygwin' in them... HKEY_CURRENT_USER\Software\Cygwin HKEY_CURRENT_USER\Software\Cygwin\Program Options HKEY_LOCAL_MACHINE\SOFTWARE\Cygwin HKEY_LOCAL_MACHINE\SOFTWARE\Cygwin\Installations (default) =3D '\??\C:\cygwin' HKEY_LOCAL_MACHINE\SOFTWARE\Cygwin\Program Options HKEY_LOCAL_MACHINE\SOFTWARE\Cygwin\setup (default) =3D 'C:\cygwin' obcaseinsensitive set to 1 Cygwin installations found in the registry: System: Key: c5e39b7a9d22bafb Path: C:\cygwin Listing available drives... Drv Type Size Used Flags Name a: fd N/A N/A=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20 c: hd NTFS 39897Mb 18% CP CS UN PA FC WindowsPartition d: cd N/A N/A=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20 fd =3D floppy, hd =3D hard drive, cd =3D CD-ROM net=3D Network Share, ram=3D RAM drive, unk=3D Unknown CP =3D Case Preserving, CS =3D Case Sensitive, UN =3D Unicode PA =3D Persistent ACLS, FC =3D File Compression, VC =3D Volume Compression Mount entries: these map POSIX directories to your NT drives. -NT- -POSIX- -Type- -Flags- C:\cygwin / system binary,auto C:\cygwin\bin /usr/bin system binary,auto C:\cygwin\lib /usr/lib system binary,auto cygdrive prefix /cygdrive user binary,posix=3D0,auto Looking to see where common programs can be found, if at all... Not Found: awk Not Found: bash Not Found: cat Not Found: cp Not Found: cpp (good!) Not Found: crontab Found: C:\Windows\system32\find.exe Not Found: gcc Not Found: gdb Not Found: grep Not Found: kill Not Found: ld Not Found: ls Not Found: make Not Found: mv Not Found: patch Not Found: perl Not Found: rm Not Found: sed Not Found: ssh Not Found: sh Not Found: tar Not Found: test Not Found: vi Not Found: vim Looking for various Cygwin DLLs... (-v gives version info) Warning: cygwin1.dll not found on your path Checking for any Cygwin services...=20 Service : sshd=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 Display name : CYGWIN sshd Current State : Running Controls Accepted : Stop Command : /usr/sbin/sshd -D stdin path : /dev/null stdout path : /var/log/sshd.log stderr path : /var/log/sshd.log Process Type : Own Process Startup : Automatic Dependencies : tcpip Account : LocalSystem Service : sshd2=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 Display name : CYGWIN sshd_debug Current State : Stopped Command : /usr/sbin/sshd -D -d -d -d stdin path : /dev/null stdout path : /var/log/sshd2.log stderr path : /var/log/sshd2.log Process Type : Own Process Startup : Automatic Dependencies : tcpip Account : LocalSystem Cygwin Package Information Last downloaded files to: D:\custom\cygwin-32 Last downloaded files from:=20 Package Version Status _autorebase 000730-1 OK _update-info-dir 01319-1 OK alternatives 1.3.30c-10 OK base-cygwin 3.3-1 OK base-files 4.2-3 OK bash 4.1.17-9 OK bzip2 1.0.6-2 OK ca-certificates 2.2-1 OK coreutils 8.23-4 OK crypt 1.2-1 OK csih 0.9.8-2 OK curl 7.39.0-1 OK cygrunsrv 1.61-1 OK cygutils 1.4.14-1 OK cygwin 1.7.33-1 OK dash 0.5.8-3 OK diffutils 3.3-2 OK editrights 1.03-1 OK file 5.20-1 OK findutils 4.5.12-1 OK gawk 4.1.1-1 OK getent 2.18.90-4 OK grep 2.21-1 OK groff 1.22.2-2 OK gzip 1.6-1 OK hostname 3.13-1 OK info 5.2-3 OK ipc-utils 1.0-1 OK less 444-1 OK libargp 20110921-2 OK libattr1 2.4.46-1 OK libblkid1 2.25.2-1 OK libbz2_1 1.0.6-2 OK libcharset1 1.14-2 OK libcom_err2 1.42.10-1 OK libcurl4 7.39.0-1 OK libdb4.8 4.8.30-1 OK libedit0 20130712-1 OK libexpat1 2.1.0-3 OK libffi6 3.0.13-1 OK libgcc1 4.8.3-4 OK libgdbm4 1.8.3-20 OK libgmp10 6.0.0a-1 OK libgmp3 4.3.2-1 OK libgnutls28 3.2.20-1 OK libgssapi_krb5_2 1.12.2-1 OK libhogweed2 2.7-1 OK libiconv 1.14-2 OK libiconv2 1.14-2 OK libidn11 1.29-1 OK libintl8 0.19.3-1 OK libk5crypto3 1.12.2-1 OK libkrb5_3 1.12.2-1 OK libkrb5support0 1.12.2-1 OK liblzma5 5.0.5-1 OK libmetalink3 0.1.2-1 OK libmpfr4 3.1.2-1 OK libncurses10 5.9-20141213-1 OK libncursesw10 5.9-20141213-1 OK libnettle4 2.7-1 OK libopenldap2_4_2 2.4.40-1 OK libopenssl100 1.0.1j-2 OK libp11-kit0 0.20.7-1 OK libpcre1 8.36-1 OK libpipeline1 1.3.0-3 OK Empty package libpopt0 libpopt0 1.16-1 OK libreadline7 6.1.2-3 OK libsasl2_3 2.1.26-9 OK libsigsegv2 2.10-1 OK libsmartcols1 2.25.2-1 OK libssh2_1 1.4.3-1 OK libssp0 4.8.3-4 OK libstdc++6 4.8.3-4 OK libtasn1_6 4.2-1 OK libuuid1 2.25.2-1 OK login 1.11-1 OK lynx 2.8.7-1 OK man-db 2.6.7-2 OK mintty 1.1.3-1 OK openssh 6.7p1-1 OK openssl 1.0.1j-2 OK p11-kit 0.20.7-1 OK p11-kit-trust 0.20.7-1 OK perl 5.14.2-3 OK popt 1.16-1 OK rebase 4.4.1-1 OK run 1.3.3-1 OK screen 4.2.1-3 OK sed 4.2.2-3 OK shutdown 1.10-1 OK tar 1.27.1-1 OK terminfo 5.9-20141213-1 OK tzcode 2014j-1 OK unzip 6.0-11 OK util-linux 2.25.2-1 OK vim-minimal 7.4.560-1 OK wget 1.16.1-1 OK which 2.20-2 OK xz 5.0.5-1 OK zlib0 1.2.8-3 OK ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: application/octet-stream; name="ssh_client_success.log" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="ssh_client_success.log" =0A= @kali ~$ scp -vv tester AT 13 DOT 13 DOT 13 DOT 139:/var/log/sshd2.log .=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=0A= Executing: program /usr/bin/ssh host 13.13.13.139, user tester, command scp= -v -f /var/log/sshd2.log=0A= OpenSSH_6.0p1 Debian-4+deb7u2, OpenSSL 1.0.1e 11 Feb 2013=0A= debug1: Reading configuration data /etc/ssh/ssh_config=0A= debug1: /etc/ssh/ssh_config line 19: Applying options for *=0A= debug2: ssh_connect: needpriv 0=0A= debug1: Connecting to 13.13.13.139 [13.13.13.139] port 22.=0A= debug1: Connection established.=0A= debug1: permanently_set_uid: 0/0=0A= debug1: identity file /root/.ssh/id_rsa type -1=0A= debug1: identity file /root/.ssh/id_rsa-cert type -1=0A= debug1: identity file /root/.ssh/id_dsa type -1=0A= debug1: identity file /root/.ssh/id_dsa-cert type -1=0A= debug1: identity file /root/.ssh/id_ecdsa type -1=0A= debug1: identity file /root/.ssh/id_ecdsa-cert type -1=0A= debug1: Remote protocol version 2.0, remote software version OpenSSH_6.7=0A= debug1: match: OpenSSH_6.7 pat OpenSSH*=0A= debug1: Enabling compatibility mode for protocol 2.0=0A= debug1: Local version string SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u2=0A= debug2: fd 3 setting O_NONBLOCK=0A= debug1: SSH2_MSG_KEXINIT sent=0A= debug1: SSH2_MSG_KEXINIT received=0A= debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-= nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange= -sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1=0A= debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01 AT openssh DOT com,ecdsa-s= ha2-nistp384-cert-v01 AT openssh DOT com,ecdsa-sha2-nistp521-cert-v01 AT openssh DOT com,= ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa-cert-v0= 1 AT openssh DOT com,ssh-dss-cert-v01 AT openssh DOT com,ssh-rsa-cert-v00 AT openssh DOT com,ssh= -dss-cert-v00 AT openssh DOT com,ssh-rsa,ssh-dss=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit: first_kex_follows 0=20=0A= debug2: kex_parse_kexinit: reserved 0=20=0A= debug2: kex_parse_kexinit: curve25519-sha256 AT libssh DOT org,ecdh-sha2-nistp256,= ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,= diffie-hellman-group14-sha1=0A= debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256,ssh-ed25519= =0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit: first_kex_follows 0=20=0A= debug2: kex_parse_kexinit: reserved 0=20=0A= debug2: mac_setup: found hmac-sha1=0A= debug1: kex: server->client aes128-ctr hmac-sha1 none=0A= debug2: mac_setup: found hmac-sha1=0A= debug1: kex: client->server aes128-ctr hmac-sha1 none=0A= debug1: sending SSH2_MSG_KEX_ECDH_INIT=0A= debug1: expecting SSH2_MSG_KEX_ECDH_REPLY=0A= debug1: Server host key: ECDSA e2:dc:be:51:5b:0c:3e:63:1f:e5:17:2b:25:68:a6= :0a=0A= debug1: Host '13.13.13.139' is known and matches the ECDSA host key.=0A= debug1: Found key in /root/.ssh/known_hosts:7=0A= debug1: ssh_ecdsa_verify: signature correct=0A= debug2: kex_derive_keys=0A= debug2: set_newkeys: mode 1=0A= debug1: SSH2_MSG_NEWKEYS sent=0A= debug1: expecting SSH2_MSG_NEWKEYS=0A= debug2: set_newkeys: mode 0=0A= debug1: SSH2_MSG_NEWKEYS received=0A= debug1: Roaming not allowed by server=0A= debug1: SSH2_MSG_SERVICE_REQUEST sent=0A= debug2: service_accept: ssh-userauth=0A= debug1: SSH2_MSG_SERVICE_ACCEPT received=0A= debug2: key: /root/.ssh/id_rsa ((nil))=0A= debug2: key: /root/.ssh/id_dsa ((nil))=0A= debug2: key: /root/.ssh/id_ecdsa ((nil))=0A= debug1: Authentications that can continue: publickey,password,keyboard-inte= ractive=0A= debug1: Next authentication method: publickey=0A= debug1: Trying private key: /root/.ssh/id_rsa=0A= debug1: Trying private key: /root/.ssh/id_dsa=0A= debug1: Trying private key: /root/.ssh/id_ecdsa=0A= debug2: we did not send a packet, disable method=0A= debug1: Next authentication method: keyboard-interactive=0A= debug2: userauth_kbdint=0A= debug2: we sent a keyboard-interactive packet, wait for reply=0A= debug1: Authentications that can continue: publickey,password,keyboard-inte= ractive=0A= debug2: we did not send a packet, disable method=0A= debug1: Next authentication method: password=0A= tester AT 13 DOT 13 DOT 13 DOT 139's password:=20=0A= debug2: we sent a password packet, wait for reply=0A= debug1: Authentication succeeded (password).=0A= Authenticated to 13.13.13.139 ([13.13.13.139]:22).=0A= debug2: fd 4 setting O_NONBLOCK=0A= debug2: fd 5 setting O_NONBLOCK=0A= debug1: channel 0: new [client-session]=0A= debug2: channel 0: send open=0A= debug1: Requesting no-more-sessions AT openssh DOT com=0A= debug1: Entering interactive session.=0A= debug2: callback start=0A= debug2: client_session2_setup: id 0=0A= debug2: fd 3 setting TCP_NODELAY=0A= debug1: Sending environment.=0A= debug1: Sending env LANG =3D C=0A= debug2: channel 0: request env confirm 0=0A= debug1: Sending env LC_CTYPE =3D en_US.UTF-8=0A= debug2: channel 0: request env confirm 0=0A= debug1: Sending command: scp -v -f /var/log/sshd2.log=0A= debug2: channel 0: request exec confirm 1=0A= debug2: callback done=0A= debug2: channel 0: open confirm rwindow 0 rmax 32768=0A= debug2: channel 0: rcvd adjust 2097152=0A= debug2: channel_input_status_confirm: type 99 id 0=0A= debug2: exec request accepted on channel 0=0A= debug2: channel 0: rcvd ext data 1328=0A= debug1: permanently_set_uid: 1000/513=0A= debug3: Copy environment: ALLUSERSPROFILE=3DC:\\ProgramData=0A= debug3: Copy environment: COMPUTERNAME=3DTESTVM181=0A= debug3: Copy environment: COMSPEC=3DC:\\Windows\\system32\\cmd.exe=0A= debug3: Copy environment: OS=3DWindows_NT=0A= debug3: Copy environment: PATH=3D/bin:/cygdrive/c/Windows/system32:/cygdriv= e/c/Windows:/cygdrive/c/Windows/System32/Wbem:/cygdrive/c/Windows/System32/= WindowsPowerShell/v1.0=0A= debug3: Copy environment: PATHEXT=3D.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;= .WSF;.WSH;.MSC=0A= debug3: Copy environment: PROGRAMFILES=3DC:\\Program Files=0A= debug3: Copy environment: SYSTEMDRIVE=3DC:=0A= debug3: Copy environment: SYSTEMROOT=3DC:\\Windows=0A= debug3: Copy environment: WINDIR=3DC:\\Windows=0A= Environment:=0A= ALLUSERSPROFILE=3DC:\ProgramData=0A= COMPUTERNAME=3DTESTVM181=0A= COMSPEC=3DC:\Windows\system32\cmd.exe=0A= OS=3DWindows_NT=0A= PATH=3D/bin:/cygdrive/c/Windows/system32:/cygdrive/c/Windows:/cygdrive/c/= Windows/System32/Wbem:/cygdrive/c/Windows/System32/WindowsPowerShell/v1.0= =0A= PATHEXT=3D.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC=0A= PROGRAMFILES=3DC:\Program Files=0A= SYSTEMDRIVE=3DC:=0A= SYSTEMROOT=3DC:\Windows=0A= WINDIR=3DC:\Windows=0A= USER=3Dtester=0A= LOGNAME=3Dtester=0A= HOME=3D/home/tester=0A= MAIL=3D/var/spool/mail//tester=0A= SHELL=3D/bin/bash=0A= SSH_CLIENT=3D13.13.13.247 59419 22=0A= SSH_CONNECTION=3D13.13.13.247 59419 13.13.13.139 22=0A= debug2: channel 0: written 1328 to efd 6=0A= debug2: channel 0: rcvd ext data 42=0A= Sending file modes: C0644 11577 sshd2.log=0A= debug2: channel 0: written 42 to efd 6=0A= Sink: C0644 11577 sshd2.log=0A= sshd2.log = 100% 11KB = 11.3KB/s 00:00=20=20=20=20=0A= debug1: client_input_channel_req: channel 0 rtype exit-status reply 0=0A= debug1: client_input_channel_req: channel 0 rtype eow AT openssh DOT com reply 0= =0A= debug2: channel 0: rcvd eow=0A= debug2: channel 0: close_read=0A= debug2: channel 0: input open -> closed=0A= debug2: channel 0: rcvd eof=0A= debug2: channel 0: output open -> drain=0A= debug2: channel 0: obuf empty=0A= debug2: channel 0: close_write=0A= debug2: channel 0: output drain -> closed=0A= debug2: channel 0: rcvd close=0A= debug2: channel 0: almost dead=0A= debug2: channel 0: gc: notify user=0A= debug2: channel 0: gc: user detached=0A= debug2: channel 0: send close=0A= debug2: channel 0: is dead=0A= debug2: channel 0: garbage collecting=0A= debug1: channel 0: free: client-session, nchannels 1=0A= debug1: fd 0 clearing O_NONBLOCK=0A= debug1: fd 1 clearing O_NONBLOCK=0A= Transferred: sent 2088, received 14720 bytes, in 0.2 seconds=0A= Bytes per second: sent 12310.5, received 86786.8=0A= debug1: Exit status 0=0A= root AT kali ~$ ls -al sshd*=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=0A= -rw-r--r-- 1 root root 11577 Jan 4 20:04 sshd2.log=0A= =0A= ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: application/octet-stream; name="sshd_failure.log" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="sshd_failure.log" debug2: load_server_config: filename /etc/sshd_config=0A= debug2: load_server_config: done config len =3D 249=0A= debug2: parse_server_config: config /etc/sshd_config len 249=0A= debug3: /etc/sshd_config:46 setting MaxAuthTries 2=0A= debug3: /etc/sshd_config:54 setting AuthorizedKeysFile .ssh/authorized_keys= =0A= debug3: /etc/sshd_config:110 setting UsePrivilegeSeparation yes=0A= debug3: /etc/sshd_config:126 setting Subsystem sftp /usr/sbin/sftp-server= =0A= debug1: sshd version OpenSSH_6.7, OpenSSL 1.0.1j 15 Oct 2014=0A= debug1: private host key: #0 type 1 RSA=0A= debug1: private host key: #1 type 2 DSA=0A= debug1: private host key: #2 type 3 ECDSA=0A= debug1: private host key: #3 type 4 ED25519=0A= debug1: rexec_argv[0]=3D'/usr/sbin/sshd'=0A= debug1: rexec_argv[1]=3D'-D'=0A= debug1: rexec_argv[2]=3D'-d'=0A= debug1: rexec_argv[3]=3D'-d'=0A= debug1: rexec_argv[4]=3D'-d'=0A= debug2: fd 3 setting O_NONBLOCK=0A= debug3: sock_set_v6only: set socket 3 IPV6_V6ONLY=0A= debug1: Bind to port 22 on ::.=0A= Server listening on :: port 22.=0A= debug2: fd 4 setting O_NONBLOCK=0A= debug1: Bind to port 22 on 0.0.0.0.=0A= Server listening on 0.0.0.0 port 22.=0A= debug1: fd 5 clearing O_NONBLOCK=0A= debug1: Server will not fork when running in debugging mode.=0A= debug3: send_rexec_state: entering fd =3D 8 config len 249=0A= debug3: ssh_msg_send: type 0=0A= debug3: send_rexec_state: done=0A= debug1: rexec start in 5 out 5 newsock 5 pipe -1 sock 8=0A= debug1: inetd sockets after dupping: 3, 3=0A= Connection from 13.13.13.247 port 59423 on 13.13.13.139 port 22=0A= debug1: Client protocol version 2.0; client software version OpenSSH_6.0p1 = Debian-4+deb7u2=0A= debug1: match: OpenSSH_6.0p1 Debian-4+deb7u2 pat OpenSSH* compat 0x04000000= =0A= debug1: Enabling compatibility mode for protocol 2.0=0A= debug1: Local version string SSH-2.0-OpenSSH_6.7=0A= debug2: fd 3 setting O_NONBLOCK=0A= debug2: Network child is on pid 3992=0A= debug3: preauth child monitor started=0A= debug1: list_hostkey_types: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256,ssh-ed25519= [preauth]=0A= debug1: SSH2_MSG_KEXINIT sent [preauth]=0A= debug1: SSH2_MSG_KEXINIT received [preauth]=0A= debug2: kex_parse_kexinit: curve25519-sha256 AT libssh DOT org,ecdh-sha2-nistp256,= ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,= diffie-hellman-group14-sha1 [preauth]=0A= debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256,ssh-ed25519 = [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1 [preauth]=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1 [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: first_kex_follows 0 [preauth]=0A= debug2: kex_parse_kexinit: reserved 0 [preauth]=0A= debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-= nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange= -sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth]=0A= debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01 AT openssh DOT com,ecdsa-s= ha2-nistp384-cert-v01 AT openssh DOT com,ecdsa-sha2-nistp521-cert-v01 AT openssh DOT com,= ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa-cert-v0= 1 AT openssh DOT com,ssh-dss-cert-v01 AT openssh DOT com,ssh-rsa-cert-v00 AT openssh DOT com,ssh= -dss-cert-v00 AT openssh DOT com,ssh-rsa,ssh-dss [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se [preauth]=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96 [preauth]=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96 [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: first_kex_follows 0 [preauth]=0A= debug2: kex_parse_kexinit: reserved 0 [preauth]=0A= debug2: mac_setup: setup hmac-sha1 [preauth]=0A= debug1: kex: client->server aes128-ctr hmac-sha1 none [preauth]=0A= debug2: mac_setup: setup hmac-sha1 [preauth]=0A= debug1: kex: server->client aes128-ctr hmac-sha1 none [preauth]=0A= debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth]=0A= debug3: mm_key_sign entering [preauth]=0A= debug3: mm_request_send entering: type 6 [preauth]=0A= debug3: mm_key_sign: waiting for MONITOR_ANS_SIGN [preauth]=0A= debug3: mm_request_receive_expect entering: type 7 [preauth]=0A= debug3: mm_request_receive entering [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 6=0A= debug3: mm_answer_sign=0A= debug3: mm_answer_sign: signature 0x20057f08(100)=0A= debug3: mm_request_send entering: type 7=0A= debug2: monitor_read: 6 used once, disabling now=0A= debug2: kex_derive_keys [preauth]=0A= debug2: set_newkeys: mode 1 [preauth]=0A= debug1: SSH2_MSG_NEWKEYS sent [preauth]=0A= debug1: expecting SSH2_MSG_NEWKEYS [preauth]=0A= debug2: set_newkeys: mode 0 [preauth]=0A= debug1: SSH2_MSG_NEWKEYS received [preauth]=0A= debug1: KEX done [preauth]=0A= debug1: userauth-request for user tester service ssh-connection method none= [preauth]=0A= debug1: attempt 0 failures 0 [preauth]=0A= debug3: mm_getpwnamallow entering [preauth]=0A= debug3: mm_request_send entering: type 8 [preauth]=0A= debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM [preauth]=0A= debug3: mm_request_receive_expect entering: type 9 [preauth]=0A= debug3: mm_request_receive entering [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 8=0A= debug3: mm_answer_pwnamallow=0A= debug3: Trying to reverse map address 13.13.13.247.=0A= debug2: parse_server_config: config reprocess config len 249=0A= debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1=0A= debug3: mm_request_send entering: type 9=0A= debug2: monitor_read: 8 used once, disabling now=0A= debug2: input_userauth_request: setting up authctxt for tester [preauth]=0A= debug3: mm_inform_authserv entering [preauth]=0A= debug3: mm_request_send entering: type 4 [preauth]=0A= debug2: input_userauth_request: try method none [preauth]=0A= debug3: userauth_finish: failure partial=3D0 next methods=3D"publickey,pass= word,keyboard-interactive" [preauth]=0A= debug1: userauth-request for user tester service ssh-connection method publ= ickey [preauth]=0A= debug1: attempt 1 failures 0 [preauth]=0A= debug2: input_userauth_request: try method publickey [preauth]=0A= debug1: test whether pkalg/pkblob are acceptable [preauth]=0A= debug3: mm_key_allowed entering [preauth]=0A= debug3: mm_request_send entering: type 22 [preauth]=0A= debug3: mm_key_allowed: waiting for MONITOR_ANS_KEYALLOWED [preauth]=0A= debug3: mm_request_receive_expect entering: type 23 [preauth]=0A= debug3: mm_request_receive entering [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 4=0A= debug3: mm_answer_authserv: service=3Dssh-connection, style=3D=0A= debug2: monitor_read: 4 used once, disabling now=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 22=0A= debug3: mm_answer_keyallowed entering=0A= debug3: mm_answer_keyallowed: key_from_blob: 0x20057688=0A= debug1: temporarily_use_uid: 1000/513 (e=3D18/544)=0A= seteuid 1000: Operation not permitted=0A= debug1: do_cleanup=0A= debug1: Killing privsep child 3992=0A= ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: application/octet-stream; name="sshd_success.log" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="sshd_success.log" debug2: load_server_config: filename /etc/sshd_config=0A= debug2: load_server_config: done config len =3D 249=0A= debug2: parse_server_config: config /etc/sshd_config len 249=0A= debug3: /etc/sshd_config:46 setting MaxAuthTries 2=0A= debug3: /etc/sshd_config:54 setting AuthorizedKeysFile .ssh/authorized_keys= =0A= debug3: /etc/sshd_config:110 setting UsePrivilegeSeparation yes=0A= debug3: /etc/sshd_config:126 setting Subsystem sftp /usr/sbin/sftp-server= =0A= debug1: sshd version OpenSSH_6.7, OpenSSL 1.0.1j 15 Oct 2014=0A= debug1: private host key: #0 type 1 RSA=0A= debug1: private host key: #1 type 2 DSA=0A= debug1: private host key: #2 type 3 ECDSA=0A= debug1: private host key: #3 type 4 ED25519=0A= debug1: rexec_argv[0]=3D'/usr/sbin/sshd'=0A= debug1: rexec_argv[1]=3D'-D'=0A= debug1: rexec_argv[2]=3D'-d'=0A= debug1: rexec_argv[3]=3D'-d'=0A= debug1: rexec_argv[4]=3D'-d'=0A= debug2: fd 3 setting O_NONBLOCK=0A= debug3: sock_set_v6only: set socket 3 IPV6_V6ONLY=0A= debug1: Bind to port 22 on ::.=0A= Server listening on :: port 22.=0A= debug2: fd 4 setting O_NONBLOCK=0A= debug1: Bind to port 22 on 0.0.0.0.=0A= Server listening on 0.0.0.0 port 22.=0A= debug1: fd 5 clearing O_NONBLOCK=0A= debug1: Server will not fork when running in debugging mode.=0A= debug3: send_rexec_state: entering fd =3D 8 config len 249=0A= debug3: ssh_msg_send: type 0=0A= debug3: send_rexec_state: done=0A= debug1: rexec start in 5 out 5 newsock 5 pipe -1 sock 8=0A= debug1: inetd sockets after dupping: 3, 3=0A= Connection from 13.13.13.247 port 59419 on 13.13.13.139 port 22=0A= debug1: Client protocol version 2.0; client software version OpenSSH_6.0p1 = Debian-4+deb7u2=0A= debug1: match: OpenSSH_6.0p1 Debian-4+deb7u2 pat OpenSSH* compat 0x04000000= =0A= debug1: Enabling compatibility mode for protocol 2.0=0A= debug1: Local version string SSH-2.0-OpenSSH_6.7=0A= debug2: fd 3 setting O_NONBLOCK=0A= debug2: Network child is on pid 3028=0A= debug3: preauth child monitor started=0A= debug1: list_hostkey_types: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256,ssh-ed25519= [preauth]=0A= debug1: SSH2_MSG_KEXINIT sent [preauth]=0A= debug1: SSH2_MSG_KEXINIT received [preauth]=0A= debug2: kex_parse_kexinit: curve25519-sha256 AT libssh DOT org,ecdh-sha2-nistp256,= ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,= diffie-hellman-group14-sha1 [preauth]=0A= debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256,ssh-ed25519 = [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1 [preauth]=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1 [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: first_kex_follows 0 [preauth]=0A= debug2: kex_parse_kexinit: reserved 0 [preauth]=0A= debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-= nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange= -sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth]=0A= debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01 AT openssh DOT com,ecdsa-s= ha2-nistp384-cert-v01 AT openssh DOT com,ecdsa-sha2-nistp521-cert-v01 AT openssh DOT com,= ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa-cert-v0= 1 AT openssh DOT com,ssh-dss-cert-v01 AT openssh DOT com,ssh-rsa-cert-v00 AT openssh DOT com,ssh= -dss-cert-v00 AT openssh DOT com,ssh-rsa,ssh-dss [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se [preauth]=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se [preauth]=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96 [preauth]=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96 [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib [preauth]=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: [preauth]=0A= debug2: kex_parse_kexinit: first_kex_follows 0 [preauth]=0A= debug2: kex_parse_kexinit: reserved 0 [preauth]=0A= debug2: mac_setup: setup hmac-sha1 [preauth]=0A= debug1: kex: client->server aes128-ctr hmac-sha1 none [preauth]=0A= debug2: mac_setup: setup hmac-sha1 [preauth]=0A= debug1: kex: server->client aes128-ctr hmac-sha1 none [preauth]=0A= debug1: expecting SSH2_MSG_KEX_ECDH_INIT [preauth]=0A= debug3: mm_key_sign entering [preauth]=0A= debug3: mm_request_send entering: type 6 [preauth]=0A= debug3: mm_key_sign: waiting for MONITOR_ANS_SIGN [preauth]=0A= debug3: mm_request_receive_expect entering: type 7 [preauth]=0A= debug3: mm_request_receive entering [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 6=0A= debug3: mm_answer_sign=0A= debug3: mm_answer_sign: signature 0x20057fd0(100)=0A= debug3: mm_request_send entering: type 7=0A= debug2: monitor_read: 6 used once, disabling now=0A= debug2: kex_derive_keys [preauth]=0A= debug2: set_newkeys: mode 1 [preauth]=0A= debug1: SSH2_MSG_NEWKEYS sent [preauth]=0A= debug1: expecting SSH2_MSG_NEWKEYS [preauth]=0A= debug2: set_newkeys: mode 0 [preauth]=0A= debug1: SSH2_MSG_NEWKEYS received [preauth]=0A= debug1: KEX done [preauth]=0A= debug1: userauth-request for user tester service ssh-connection method none= [preauth]=0A= debug1: attempt 0 failures 0 [preauth]=0A= debug3: mm_getpwnamallow entering [preauth]=0A= debug3: mm_request_send entering: type 8 [preauth]=0A= debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM [preauth]=0A= debug3: mm_request_receive_expect entering: type 9 [preauth]=0A= debug3: mm_request_receive entering [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 8=0A= debug3: mm_answer_pwnamallow=0A= debug3: Trying to reverse map address 13.13.13.247.=0A= debug2: parse_server_config: config reprocess config len 249=0A= debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1=0A= debug3: mm_request_send entering: type 9=0A= debug2: monitor_read: 8 used once, disabling now=0A= debug2: input_userauth_request: setting up authctxt for tester [preauth]=0A= debug3: mm_inform_authserv entering [preauth]=0A= debug3: mm_request_send entering: type 4 [preauth]=0A= debug2: input_userauth_request: try method none [preauth]=0A= debug3: userauth_finish: failure partial=3D0 next methods=3D"publickey,pass= word,keyboard-interactive" [preauth]=0A= debug1: userauth-request for user tester service ssh-connection method keyb= oard-interactive [preauth]=0A= debug1: attempt 1 failures 0 [preauth]=0A= debug2: input_userauth_request: try method keyboard-interactive [preauth]= =0A= debug1: keyboard-interactive devs [preauth]=0A= debug1: auth2_challenge: user=3Dtester devs=3D [preauth]=0A= debug1: kbdint_alloc: devices '' [preauth]=0A= debug2: auth2_challenge_start: devices [preauth]=0A= debug3: userauth_finish: failure partial=3D0 next methods=3D"publickey,pass= word,keyboard-interactive" [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 4=0A= debug3: mm_answer_authserv: service=3Dssh-connection, style=3D=0A= debug2: monitor_read: 4 used once, disabling now=0A= debug1: userauth-request for user tester service ssh-connection method pass= word [preauth]=0A= debug1: attempt 2 failures 1 [preauth]=0A= debug2: input_userauth_request: try method password [preauth]=0A= debug3: mm_auth_password entering [preauth]=0A= debug3: mm_request_send entering: type 12 [preauth]=0A= debug3: mm_auth_password: waiting for MONITOR_ANS_AUTHPASSWORD [preauth]=0A= debug3: mm_request_receive_expect entering: type 13 [preauth]=0A= debug3: mm_request_receive entering [preauth]=0A= debug3: mm_request_receive entering=0A= debug3: monitor_read: checking request 12=0A= debug3: mm_answer_authpassword: sending result 1=0A= debug3: mm_request_send entering: type 13=0A= Accepted password for tester from 13.13.13.247 port 59419 ssh2=0A= debug1: monitor_child_preauth: tester has been authenticated by privileged = process=0A= debug3: mm_get_keystate: Waiting for new keys=0A= debug3: mm_request_receive_expect entering: type 26=0A= debug3: mm_request_receive entering=0A= debug3: mm_newkeys_from_blob: 0x20055f78(123)=0A= debug2: mac_setup: setup hmac-sha1=0A= debug3: mm_get_keystate: Waiting for second key=0A= debug3: mm_newkeys_from_blob: 0x20055f78(123)=0A= debug2: mac_setup: setup hmac-sha1=0A= debug3: mm_get_keystate: Getting compression state=0A= debug3: mm_get_keystate: Getting Network I/O buffers=0A= debug3: mm_auth_password: user authenticated [preauth]=0A= debug3: mm_send_keystate: Sending new keys: 0x20059558 0x20056dc0 [preauth]= =0A= debug3: mm_newkeys_to_blob: converting 0x20059558 [preauth]=0A= debug3: mm_newkeys_to_blob: converting 0x20056dc0 [preauth]=0A= debug3: mm_send_keystate: New keys have been sent [preauth]=0A= debug3: mm_send_keystate: Sending compression state [preauth]=0A= debug3: mm_request_send entering: type 26 [preauth]=0A= debug3: mm_send_keystate: Finished sending state [preauth]=0A= debug1: monitor_read_log: child log fd closed=0A= debug3: mm_share_sync: Share sync=0A= debug3: mm_share_sync: Share sync end=0A= debug2: set_newkeys: mode 0=0A= debug2: set_newkeys: mode 1=0A= debug1: packet_set_postauth: called=0A= debug1: Entering interactive session for SSH2.=0A= debug2: fd 4 setting O_NONBLOCK=0A= debug2: fd 5 setting O_NONBLOCK=0A= debug1: server_init_dispatch_20=0A= debug1: server_input_channel_open: ctype session rchan 0 win 2097152 max 32= 768=0A= debug1: input_session_request=0A= debug1: channel 0: new [server-session]=0A= debug2: session_new: allocate (allocated 0 max 10)=0A= debug3: session_unused: session id 0 unused=0A= debug1: session_new: session 0=0A= debug1: session_open: channel 0=0A= debug1: session_open: session 0: link with channel 0=0A= debug1: server_input_channel_open: confirm session=0A= debug1: server_input_global_request: rtype no-more-sessions AT openssh DOT com wan= t_reply 0=0A= debug1: server_input_channel_req: channel 0 request env reply 0=0A= debug1: session_by_channel: session 0 channel 0=0A= debug1: session_input_channel_req: session 0 req env=0A= debug2: Ignoring env request LANG: disallowed name=0A= debug1: server_input_channel_req: channel 0 request env reply 0=0A= debug1: session_by_channel: session 0 channel 0=0A= debug1: session_input_channel_req: session 0 req env=0A= debug2: Ignoring env request LC_CTYPE: disallowed name=0A= debug1: server_input_channel_req: channel 0 request exec reply 1=0A= debug1: session_by_channel: session 0 channel 0=0A= debug1: session_input_channel_req: session 0 req exec=0A= Starting session: command for tester from 13.13.13.247 port 59419=0A= debug2: fd 3 setting TCP_NODELAY=0A= debug3: packet_set_tos: set IP_TOS 0x08=0A= debug2: fd 8 setting O_NONBLOCK=0A= debug2: fd 7 setting O_NONBLOCK=0A= debug2: fd 10 setting O_NONBLOCK=0A= debug2: channel 0: read 1328 from efd 10=0A= debug2: channel 0: rwin 2097152 elen 1328 euse 1=0A= debug2: channel 0: sent ext data 1328=0A= ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: text/plain; name="uname_client.txt" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="uname_client.txt" Linux kali 3.14-kali1-amd64 #1 SMP Debian 3.14.5-1kali1 (2014-06-07) x86_64= GNU/Linux ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: application/octet-stream; name="ssh_client_failure.log" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="ssh_client_failure.log" root AT kali ~/test$ cat ~/.ssh/id_rsa.pub=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =0A= ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDBEzrPVBZ33UWBql3dVCVsVU6YSoFllVPTbAw= rBNKN0mAZYcGtF5WtBTQObNDqN7xsgx4rfPon/sFCk6AzE6e7xEhxlWkITP9fSWZzzfoxIeKuvY= B8eBpODcesi9Fk7FNa1BKZ+MBQPEp43u8bCHnmuOOS8gIv+gN4giK0HSa8rd50SJdt5hlYCp/Ke= nzN7p0QUYWVn4yEhoRq607Mt4+KOSFNcSQCZ6i2t4ifUO+EyeztdS4vuavuOyqc5wJJqan1PcKf= LVYsDx228stb4MTx6+OGqtbmfbasL6GnzmKohWdgKPK88+DQiRrHcYcm/pZog6e8lc+HRSw13Ta= +Qrgo468R+TGXKmfKEXKb/C35sK7uNPgy/P5Sb4t5EvH/52lzTh1WJbR0ldFIHepgymAQGe/No4= lXQ6m8i12zXeVAJznqgs376M+HfhxoNbK2JXO+F0ir5NC5RVV/slFyfSLJdZrb/99lL8qIM855N= EZmfgIOan/K3A0miuV/Pq5g09H8auQtH49v3qTIZEFgtLQbMLLtVsvD2uspoTCorPQeWUaeHZu9= zA4OJ5zG6r/WZ3pS2SEw9o9dNabjtu0VaNkxosM5LVP7avBi82q6Dhb0BOkm0AUXV/IKU/5rHnF= FgQLVDItVwbMfTBC9IWI5wxy9aolLTeJIIXVcuEKmTinZyQ=3D=3D root AT kali=0A= root AT kali ~/test$ scp -vv tester AT 13 DOT 13 DOT 13 DOT 139:/var/log/sshd2.log .=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=0A= Executing: program /usr/bin/ssh host 13.13.13.139, user tester, command scp= -v -f /var/log/sshd2.log=0A= OpenSSH_6.0p1 Debian-4+deb7u2, OpenSSL 1.0.1e 11 Feb 2013=0A= debug1: Reading configuration data /etc/ssh/ssh_config=0A= debug1: /etc/ssh/ssh_config line 19: Applying options for *=0A= debug2: ssh_connect: needpriv 0=0A= debug1: Connecting to 13.13.13.139 [13.13.13.139] port 22.=0A= debug1: Connection established.=0A= debug1: permanently_set_uid: 0/0=0A= debug1: identity file /root/.ssh/id_rsa type 1=0A= debug1: Checking blacklist file /usr/share/ssh/blacklist.RSA-4096=0A= debug1: Checking blacklist file /etc/ssh/blacklist.RSA-4096=0A= debug1: identity file /root/.ssh/id_rsa-cert type -1=0A= debug1: identity file /root/.ssh/id_dsa type -1=0A= debug1: identity file /root/.ssh/id_dsa-cert type -1=0A= debug1: identity file /root/.ssh/id_ecdsa type -1=0A= debug1: identity file /root/.ssh/id_ecdsa-cert type -1=0A= debug1: Remote protocol version 2.0, remote software version OpenSSH_6.7=0A= debug1: match: OpenSSH_6.7 pat OpenSSH*=0A= debug1: Enabling compatibility mode for protocol 2.0=0A= debug1: Local version string SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u2=0A= debug2: fd 3 setting O_NONBLOCK=0A= debug1: SSH2_MSG_KEXINIT sent=0A= debug1: SSH2_MSG_KEXINIT received=0A= debug2: kex_parse_kexinit: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-= nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange= -sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1=0A= debug2: kex_parse_kexinit: ecdsa-sha2-nistp256-cert-v01 AT openssh DOT com,ecdsa-s= ha2-nistp384-cert-v01 AT openssh DOT com,ecdsa-sha2-nistp521-cert-v01 AT openssh DOT com,= ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa-cert-v0= 1 AT openssh DOT com,ssh-dss-cert-v01 AT openssh DOT com,ssh-rsa-cert-v00 AT openssh DOT com,ssh= -dss-cert-v00 AT openssh DOT com,ssh-rsa,ssh-dss=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcf= our128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,a= rcfour,rijndael-cbc AT lysator DOT liu DOT se=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96=0A= debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64 AT openssh DOT com,hmac-sha2= -256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96,hmac-ripemd160,hmac-ri= pemd160 AT openssh DOT com,hmac-sha1-96,hmac-md5-96=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com,zlib=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit: first_kex_follows 0=20=0A= debug2: kex_parse_kexinit: reserved 0=20=0A= debug2: kex_parse_kexinit: curve25519-sha256 AT libssh DOT org,ecdh-sha2-nistp256,= ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,= diffie-hellman-group14-sha1=0A= debug2: kex_parse_kexinit: ssh-rsa,ssh-dss,ecdsa-sha2-nistp256,ssh-ed25519= =0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com=0A= debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm AT open= ssh.com,aes256-gcm AT openssh DOT com,chacha20-poly1305 AT openssh DOT com=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1=0A= debug2: kex_parse_kexinit: umac-64-etm AT openssh DOT com,umac-128-etm AT openssh DOT com= ,hmac-sha2-256-etm AT openssh DOT com,hmac-sha2-512-etm AT openssh DOT com,hmac-sha1-etm@= openssh.com,umac-64 AT openssh DOT com,umac-128 AT openssh DOT com,hmac-sha2-256,hmac-sha= 2-512,hmac-sha1=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com=0A= debug2: kex_parse_kexinit: none,zlib AT openssh DOT com=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit:=20=0A= debug2: kex_parse_kexinit: first_kex_follows 0=20=0A= debug2: kex_parse_kexinit: reserved 0=20=0A= debug2: mac_setup: found hmac-sha1=0A= debug1: kex: server->client aes128-ctr hmac-sha1 none=0A= debug2: mac_setup: found hmac-sha1=0A= debug1: kex: client->server aes128-ctr hmac-sha1 none=0A= debug1: sending SSH2_MSG_KEX_ECDH_INIT=0A= debug1: expecting SSH2_MSG_KEX_ECDH_REPLY=0A= debug1: Server host key: ECDSA e2:dc:be:51:5b:0c:3e:63:1f:e5:17:2b:25:68:a6= :0a=0A= debug1: Host '13.13.13.139' is known and matches the ECDSA host key.=0A= debug1: Found key in /root/.ssh/known_hosts:7=0A= debug1: ssh_ecdsa_verify: signature correct=0A= debug2: kex_derive_keys=0A= debug2: set_newkeys: mode 1=0A= debug1: SSH2_MSG_NEWKEYS sent=0A= debug1: expecting SSH2_MSG_NEWKEYS=0A= debug2: set_newkeys: mode 0=0A= debug1: SSH2_MSG_NEWKEYS received=0A= debug1: Roaming not allowed by server=0A= debug1: SSH2_MSG_SERVICE_REQUEST sent=0A= debug2: service_accept: ssh-userauth=0A= debug1: SSH2_MSG_SERVICE_ACCEPT received=0A= debug2: key: /root/.ssh/id_rsa (0x7fdfb76d6870)=0A= debug2: key: /root/.ssh/id_dsa ((nil))=0A= debug2: key: /root/.ssh/id_ecdsa ((nil))=0A= debug1: Authentications that can continue: publickey,password,keyboard-inte= ractive=0A= debug1: Next authentication method: publickey=0A= debug1: Offering RSA public key: /root/.ssh/id_rsa=0A= debug2: we sent a publickey packet, wait for reply=0A= Connection closed by 13.13.13.139=0A= =0A= ------=_NextPart_000_0099_01D02861.A56EDFB0 Content-Type: text/plain; charset=us-ascii -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple ------=_NextPart_000_0099_01D02861.A56EDFB0--