[
https://issues.apache.org/jira/browse/GUACAMOLE-1061?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17115419#comment-17115419
]
Nick Couchman commented on GUACAMOLE-1061:
------------------------------------------
This is definitely not an issue with OpenSSH 8.2, specifically. I've just spun
up an instance of Fedora Server 32, which includes OpenSSH 8.2p1
(8.2p1-3.fc32), and I can connect to it perfectly fine with Guacamole. I
suspect one of two things is going on:
* You've configured a key exchange algorithm not supported by libssh2, which is
what guacd uses to make SSH connections.
* When you upgraded you got a new server public key that doesn't match the
previous key, and you are doing public key checking, and that is failing.
> openssh8.2 caused the problem
> -----------------------------
>
> Key: GUACAMOLE-1061
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-1061
> Project: Guacamole
> Issue Type: Bug
> Affects Versions: 1.0.0, 1.1.0
> Reporter: LY
> Priority: Major
>
> After upgrading openssh8.2 to guacd, the SSH service cannot connect to the
> target, error:"SSH handshark failed".
> guacd[28524]: INFO: Guacamole proxy daemon (guacd) version 1.0.0 started
> guacd[28524]: INFO: Guacamole proxy daemon (guacd) version 1.0.0 started
> guacd[28524]: DEBUG: Successfully bound socket to host 0.0.0.0, port 12026
> guacd[28524]: INFO: Listening on host 0.0.0.0, port 12026
> guacd[28524]: INFO: Creating new client for protocol "ssh"
> guacd[28524]: INFO: Connection ID is "$45f7c834-b0c1-4a78-84da-b43e12181dd5"
> guacd[29664]: DEBUG: Parameter "font-name" omitted. Using default value of
> "monospace".
> guacd[29664]: DEBUG: Parameter "font-size" omitted. Using default value of 12.
> guacd[29664]: DEBUG: Parameter "color-scheme" omitted. Using default value of
> "".
> guacd[29664]: DEBUG: Parameter "enable-sftp" omitted. Using default value of
> 0.
> guacd[29664]: DEBUG: Parameter "sftp-root-directory" omitted. Using default
> value of "/".
> guacd[29664]: DEBUG: Parameter "read-only" omitted. Using default value of 0.
> guacd[29664]: DEBUG: Parameter "recording-name" omitted. Using default value
> of "recording".
> guacd[29664]: DEBUG: Parameter "recording-exclude-output" omitted. Using
> default value of 0.
> guacd[29664]: DEBUG: Parameter "recording-exclude-mouse" omitted. Using
> default value of 0.
> guacd[29664]: DEBUG: Parameter "recording-include-keys" omitted. Using
> default value of 0.
> guacd[29664]: DEBUG: Parameter "create-recording-path" omitted. Using default
> value of 0.
> guacd[29664]: DEBUG: Parameter "server-alive-interval" omitted. Using default
> value of 0.
> guacd[29664]: DEBUG: Parameter "backspace" omitted. Using default value of
> 127.
> guacd[29664]: DEBUG: Parameter "terminal-type" omitted. Using default value
> of "linux".
> guacd[29664]: DEBUG: Parameter "lines" omitted. Using default value of 0.
> guacd[29664]: DEBUG: Parameter "columns" omitted. Using default value of 0.
> guacd[29664]: INFO: User "@c2227d18-8263-48c2-ae72-cad41df2f7aa" joined
> connection "$45f7c834-b0c1-4a78-84da-b43e12181dd5" (1 users now present)
> guacd[29664]: INFO: Typescript of terminal session will be saved to
> "/var/log/simp_fort/session/20/05/06/f92f8a01-a83e-4378-9282-a565af5a8eab//f92f8a01-a83e-4378-9282-a565af5a8eab".
> Timing file is
> "/var/log/simp_fort/session/20/05/06/f92f8a01-a83e-4378-9282-a565af5a8eab//f92f8a01-a83e-4378-9282-a565af5a8eab.timing".
> guacd[29664]: DEBUG: Successfully connected to host 172.16.13.243, port 22
> guacd[29664]: ERROR: SSH handshake failed.
> guacd[29664]: INFO: User "@c2227d18-8263-48c2-ae72-cad41df2f7aa" disconnected
> (0 users remain)
> guacd[29664]: INFO: Last user of connection
> "$45f7c834-b0c1-4a78-84da-b43e12181dd5" disconnected
> guacd[29664]: DEBUG: Requesting termination of client...
> guacd[29664]: DEBUG: Client terminated successfully.
> guacd[28524]: INFO: Connection "$45f7c834-b0c1-4a78-84da-b43e12181dd5"
> removed.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
