openbsd-misc
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

OPENSSHv2.51 sshd Packet Integrity Error

from [Rick Ballard] [Permanent Link][Original]
To: misc@openbsd.org
Subject: OPENSSHv2.51 sshd Packet Integrity Error
From: "Rick Ballard" <Rick.Ballard@ns.sympatico.ca>
Date: Wed, 21 Feb 2001 19:39:42 -0400
Reply-to: Rick.Ballard@ns.sympatico.ca
Sender: owner-misc@openbsd.org 
I just upgraded from 2.7 to 2.8 a week ago, did a complete make build. 
Everything worked fine. 

After reading about the problems with SSH,  did a cvs update for usr.bin/ssh. 
There were a few make errors, it could not find openssl/dhs.h or ssl/hmac.h. 
I just made soft links into the ssh build dir and the make completed.
After installing, I started getting packet integrity errors when trying to 
connect from a win95 F-Secure SSH 1.0 client. I am subscribed to both tech 
and misc, but I've seen no mention of this.

For the time being I have changed the packet integrity check routine in 
packet.h to a continue statement, and now I can connect. But I assume the 
check was there for a reason.

Why is this happening ? Is it a bug ?

Here is the output from "sshd -Qd":

bash-2.04# sshd -Qd
debug1: sshd version OpenSSH_2.5.1
debug1: load_private_key_autodetect: type 0 RSA1
Disabling protocol version 2. Could not load host key
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
Generating 768 bit RSA key.
RSA key generation complete.
debug1: Server will not fork when running in debugging mode.
Connection from 172.16.100.3 port 1972
debug1: Client protocol version 1.5; client software version W1.0
debug1: no match: W1.0
debug1: Local version string SSH-1.5-OpenSSH_2.5.1
debug1: Rhosts Authentication disabled, originating port not trusted.
debug1: Sent 768 bit server key and 1024 bit host key.
debug1: Encryption type: 3des
debug1: Received session key; encryption turned on.
debug1: Installing crc compensation attack detector.
debug1: Attempting authentication for rick.
Accepted rsa for rick from 172.16.100.3 port 1972
debug1: session_new: init
debug1: session_new: session 0
debug1: Allocating pty.
debug1: Enabling compression at level 6.
debug1: Received request for X11 forwarding with auth spoofing.

Packet integrity error (62 != 58) at /usr/src/usr.bin/ssh/sshd/../session.c:319
debug1: compress outgoing: raw data 33, compressed 37, factor 1.12
debug1: compress incoming: raw data 63, compressed 65, factor 1.03
Disconnecting: Packet integrity error. (34)

debug1: Calling cleanup 0xefb4(0x3de28)
debug1: pty_cleanup_proc: /dev/ttyp2
debug1: Calling cleanup 0x19edc(0x0)

--
Rick Ballard
Halifax, Nova Scotia, Canada
http://www3.ns.sympatico.ca/rick.ballard
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Quick Question about Make, Kevin Sindhu
Next by Date:  Re: pkg_add ignores $PKG_PATH, Brad
Previous by Thread:  Quick Question about Make, Kevin Sindhu
Next by Thread:  Re: OPENSSHv2.51 sshd Packet Integrity Error, Markus Friedl
Indexes:  [Date] [Thread] [Top] [All Lists]