Alors voici le r�sultat de 'ssh -v <client> :
[localhost:~/temp/IconesCloee] olof% ssh -v heidi
OpenSSH_2.9p1, SSH protocols 1.5/2.0, OpenSSL 0x0090581f
debug1: Reading configuration data /etc/ssh_config
debug1: Seeded RNG with 26 bytes from programs
debug1: Seeded RNG with 3 bytes from system calls
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 501 geteuid 501 anon 1
*** Pause d'environ 30 secondes ***
debug1: Connecting to heidi [192.168.0.10] port 22.
debug1: restore_uid
debug1: restore_uid
debug1: Connection established.
debug1: identity file /Users/olof/.ssh/identity type -1
debug1: identity file /Users/olof/.ssh/id_rsa type -1
debug1: identity file /Users/olof/.ssh/id_dsa type -1
debug1: Remote protocol version 1.5, remote software version OpenSSH-1.23
debug1: match: OpenSSH-1.2.3 pat ^OpenSSH
debug1: Local version string SSH-1.5-OpenSSH_2.9p1
debug1: Waiting for server public key.
debug1: Received server public key (768 bits) and host key (1024 bits).
debug1: Host 'heidi' is known and matches the RSA1 host key.
debug1: Found key in /Users/olof/.ssh/known_hosts:1
debug1: Encryption type: 3des
debug1: Sent encrypted session key.
debug1: Installing crc compensation attack detector.
debug1: Received encrypted confirmation.
debug1: Doing password authentication.
olof@heidi's password:
A part cette pause de 30 secondes, tout se passe vite.
Sinon, un 'strace -f -p <pid sshd> donne le fichier que j'ai mis en
attachement. Je dois dire qu'il ne me dit pas grand chose !!!
Quand aux logs de sshd sur le serveur, ben je les ai pas trouv�s !!!
Merci !
--
Francis Olof Garnier
EMail : mailto:[EMAIL PROTECTED]
Web : http://www.olofweb.com
>On Mon, 2 Jul 2001, Francis Olof Garnier wrote:
>
>> etc/hosts, mais par NetInfo (pour ceux qui connaissent Next !!!).
>
>oh mince, ils ont pris ce truc :(
>
>j'ai gard� d'affreux souvenirs de netinfo sur NeXT m68k.
>
>> Depuis le PC B, j'atteinds A tr�s vite par ssh. Par contre, depuis C,
>> c'est la gal�re. Et re-par contre, depuis C, le telnet sur A est
>> instantan� !!!
>
>Essaie-voir un ssh -v (client), voire un strace -f -p PID_DU_SERVEUR
>(serveur) pour voir ce qui coince.
>
>ssh est assez parano�aque en ce qui concerne la s�curit�: notamment le
>client fait des resolve et unresolve �galement ... le serveur aussi. Il
>est important de comprendre o� cela coince exactement.
>
>Regarde aussi les logs du serveur ssh sur le serveur.
>
>--
>http://www-internal.alphanet.ch/linux-leman/ avant de poser
>une question. Ouais, pour se d�sabonner aussi.
188 select(4, [3], NULL, NULL, NULL) = 1 (in [3])
188 accept(3, {sin_family=AF_INET, sin_port=htons(49166),
sin_addr=inet_addr("192.168.0.5")}}, [16]) = 4
188 fcntl(4, F_SETFL, O_RDONLY) = 0
188 fork() = 263
188 open("/dev/urandom", O_RDONLY) = 5
188 read(5, "\16+uN\7\n\322o\227\4\302\35\232w\225Py\216\272\3314\1"..., 32) = 32
188 close(5) = 0
188 close(4) = 0
188 select(4, [3], NULL, NULL, NULL <unfinished ...>
263 close(3) = 0
263 alarm(0) = 0
263 rt_sigaction(SIGALRM, {SIG_DFL}, {0x804b12c, [], SA_RESTART|0x4000000}, 8) = 0
263 rt_sigaction(SIGHUP, {SIG_DFL}, {0x804afbc, [], SA_RESTART|0x4000000}, 8) = 0
263 rt_sigaction(SIGTERM, {SIG_DFL}, {0x804b03c, [], SA_RESTART|0x4000000}, 8) = 0
263 rt_sigaction(SIGQUIT, {SIG_DFL}, {0x804b03c, [], SA_RESTART|0x4000000}, 8) = 0
263 rt_sigaction(SIGCHLD, {SIG_DFL}, {0x804b064, [], SA_RESTART|0x4000000}, 8) = 0
263 setsockopt(4, SOL_SOCKET, SO_LINGER, [1], 8) = 0
263 getpeername(4, {sin_family=AF_INET, sin_port=htons(49166),
sin_addr=inet_addr("192.168.0.5")}}, [16]) = 0
263 getpeername(4, {sin_family=AF_INET, sin_port=htons(49166),
sin_addr=inet_addr("192.168.0.5")}}, [16]) = 0
263 getpid() = 263
263 getpeername(4, {sin_family=AF_INET, sin_port=htons(49166),
sin_addr=inet_addr("192.168.0.5")}}, [16]) = 0
263 getsockname(4, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.0.10")}}, [16]) = 0
263 open("/etc/hosts.allow", O_RDONLY) = 3
263 fstat(3, {st_mode=S_IFREG|0644, st_size=660, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40014000
263 read(3, "# /etc/hosts.allow: list of host"..., 4096) = 660
263 read(3, "", 4096) = 0
263 close(3) = 0
263 munmap(0x40014000, 4096) = 0
263 open("/etc/hosts.deny", O_RDONLY) = 3
263 fstat(3, {st_mode=S_IFREG|0644, st_size=765, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40014000
263 read(3, "# /etc/hosts.deny: list of hosts"..., 4096) = 765
263 socket(PF_UNIX, SOCK_STREAM, 0) = 5
263 connect(5, {sin_family=AF_UNIX, path="
/var/run/.nscd_socket"}, 110) = -1
ECONNREFUSED (Connection refused)
263 close(5) = 0
263 open("/etc/nsswitch.conf", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=465, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40015000
263 read(5, "# /etc/nsswitch.conf\n#\n# Example"..., 4096) = 465
263 read(5, "", 4096) = 0
263 close(5) = 0
263 munmap(0x40015000, 4096) = 0
263 open("/etc/ld.so.cache", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=5589, ...}) = 0
263 old_mmap(NULL, 5589, PROT_READ, MAP_PRIVATE, 5, 0) = 0x40207000
263 close(5) = 0
263 open("/lib/libnss_files.so.2", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=31020, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000 \0\000"..., 4096) =
4096
263 old_mmap(NULL, 34368, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x40209000
263 mprotect(0x40211000, 1600, PROT_NONE) = 0
263 old_mmap(0x40211000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5,
0x7000) = 0x40211000
263 close(5) = 0
263 munmap(0x40207000, 5589) = 0
263 gettimeofday({994364320, 146359}, NULL) = 0
263 getpid() = 263
263 open("/etc/resolv.conf", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=67, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40015000
263 read(5, "search olof.ch\nnameserver 194.15"..., 4096) = 67
263 read(5, "", 4096) = 0
263 close(5) = 0
263 munmap(0x40015000, 4096) = 0
263 open("/etc/host.conf", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=26, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40015000
263 read(5, "order hosts,bind\nmulti on\n", 4096) = 26
263 read(5, "", 4096) = 0
263 close(5) = 0
263 munmap(0x40015000, 4096) = 0
263 open("/etc/hosts", O_RDONLY) = 5
263 fcntl(5, F_GETFD) = 0
263 fcntl(5, F_SETFD, FD_CLOEXEC) = 0
263 fstat(5, {st_mode=S_IFREG|0644, st_size=398, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40015000
263 read(5, "127.0.0.1\tlocalhost\n192.168.0.2\t"..., 4096) = 398
263 close(5) = 0
263 munmap(0x40015000, 4096) = 0
263 socket(PF_UNIX, SOCK_STREAM, 0) = 5
263 connect(5, {sin_family=AF_UNIX, path="
/var/run/.nscd_socket"}, 110) = -1
ECONNREFUSED (Connection refused)
263 close(5) = 0
263 brk(0x8070000) = 0x8070000
263 open("/etc/hosts", O_RDONLY) = 5
263 fcntl(5, F_GETFD) = 0
263 fcntl(5, F_SETFD, FD_CLOEXEC) = 0
263 fstat(5, {st_mode=S_IFREG|0644, st_size=398, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40015000
263 read(5, "127.0.0.1\tlocalhost\n192.168.0.2\t"..., 4096) = 398
263 close(5) = 0
263 munmap(0x40015000, 4096) = 0
263 read(3, "", 4096) = 0
263 close(3) = 0
263 munmap(0x40014000, 4096) = 0
263 rt_sigaction(SIGALRM, {0x804b0a8, [], SA_RESTART|0x4000000}, {SIG_DFL}, 8) = 0
263 alarm(600) = 0
263 write(4, "SSH-1.5-OpenSSH-1.2.3\n", 22) = 22
263 read(4, "S", 1) = 1
263 read(4, "S", 1) = 1
263 read(4, "H", 1) = 1
263 read(4, "-", 1) = 1
263 read(4, "1", 1) = 1
263 read(4, ".", 1) = 1
263 read(4, "5", 1) = 1
263 read(4, "-", 1) = 1
263 read(4, "O", 1) = 1
263 read(4, "p", 1) = 1
263 read(4, "e", 1) = 1
263 read(4, "n", 1) = 1
263 read(4, "S", 1) = 1
263 read(4, "S", 1) = 1
263 read(4, "H", 1) = 1
263 read(4, "_", 1) = 1
263 read(4, "2", 1) = 1
263 read(4, ".", 1) = 1
263 read(4, "9", 1) = 1
263 read(4, "p", 1) = 1
263 read(4, "1", 1) = 1
263 read(4, "\n", 1) = 1
263 fcntl(4, F_SETFL, O_RDONLY|O_NONBLOCK) = 0
263 write(4, "\0\0\1\v\0\0\0\0\0\2\262\270#\256P$\346\342\0\0\3\0\0\6"..., 276) = 276
263 select(5, [4], NULL, NULL, NULL) = 1 (in [4])
263 read(4, "\0\0\0\224\0\0\0\0\3\3\262\270#\256P$\346\342\3\377]\367"..., 8192) =
156
263 brk(0x8071000) = 0x8071000
263 write(4, "\0\0\0\5Sxs\357V\v}\300", 12) = 12
263 select(5, [4], NULL, NULL, NULL) = 1 (in [4])
263 read(4, "\0\0\0\r\372\23Q\2111\272K\336\200\232\204\272c\377\330"..., 8192) = 20
263 brk(0x8072000) = 0x8072000
263 socket(PF_UNIX, SOCK_STREAM, 0) = 3
263 connect(3, {sin_family=AF_UNIX, path="
/var/run/.nscd_socket"}, 110) = -1
ECONNREFUSED (Connection refused)
263 close(3) = 0
263 open("/etc/ld.so.cache", O_RDONLY) = 3
263 fstat(3, {st_mode=S_IFREG|0644, st_size=5589, ...}) = 0
263 old_mmap(NULL, 5589, PROT_READ, MAP_PRIVATE, 3, 0) = 0x40014000
263 close(3) = 0
263 open("/lib/libnss_compat.so.2", O_RDONLY) = 3
263 fstat(3, {st_mode=S_IFREG|0644, st_size=41340, ...}) = 0
263 read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000\31\0"..., 4096) =
4096
263 old_mmap(NULL, 44364, PROT_READ|PROT_EXEC, MAP_PRIVATE, 3, 0) = 0x40212000
263 mprotect(0x4021c000, 3404, PROT_NONE) = 0
263 old_mmap(0x4021c000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 3,
0x9000) = 0x4021c000
263 close(3) = 0
263 munmap(0x40014000, 5589) = 0
263 uname({sys="Linux", node="heidi", ...}) = 0
263 open("/etc/passwd", O_RDONLY) = 3
263 fcntl(3, F_GETFD) = 0
263 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
263 fstat(3, {st_mode=S_IFREG|0644, st_size=1106, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40014000
263 _llseek(3, 0, [0], SEEK_CUR) = 0
263 read(3, "root:x:0:0:root:/root:/bin/bash\n"..., 4096) = 1106
263 close(3) = 0
263 munmap(0x40014000, 4096) = 0
263 stat("/bin/bash", {st_mode=S_IFREG|0755, st_size=461400, ...}) = 0
263 open("/etc/shadow", O_RDONLY) = 3
263 fcntl(3, F_GETFD) = 0
263 fcntl(3, F_SETFD, FD_CLOEXEC) = 0
263 fstat(3, {st_mode=S_IFREG|0640, st_size=734, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40014000
263 _llseek(3, 0, [0], SEEK_CUR) = 0
263 read(3, "root:tm7bIhPBC7qRs:11316:0:99999"..., 4096) = 734
263 close(3) = 0
263 munmap(0x40014000, 4096) = 0
263 time(NULL) = 994364320
263 stat("/etc/pam.d", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
263 open("/etc/pam.d/ssh", O_RDONLY) = 3
263 fstat(3, {st_mode=S_IFREG|0644, st_size=727, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40014000
263 read(3, "#%PAM-1.0\nauth required "..., 4096) = 727
263 open("/lib/security/pam_nologin.so", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=4196, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0@\10\0\000"..., 4096) =
4096
263 old_mmap(NULL, 7248, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x40207000
263 mprotect(0x40208000, 3152, PROT_NONE) = 0
263 old_mmap(0x40208000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5, 0) =
0x40208000
263 close(5) = 0
263 open("/lib/security/pam_unix.so", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=40876, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\340#\0"..., 4096) = 4096
263 old_mmap(NULL, 93652, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x4021d000
263 mprotect(0x40227000, 52692, PROT_NONE) = 0
263 old_mmap(0x40227000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5,
0x9000) = 0x40227000
263 old_mmap(0x40228000, 48596, PROT_READ|PROT_WRITE,
MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x40228000
263 close(5) = 0
263 open("/lib/security/pam_env.so", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=10072, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\320\v\0"..., 4096) =
4096
263 brk(0x8073000) = 0x8073000
263 old_mmap(NULL, 13124, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x40234000
263 mprotect(0x40237000, 836, PROT_NONE) = 0
263 old_mmap(0x40237000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5,
0x2000) = 0x40237000
263 close(5) = 0
263 open("/lib/security/pam_lastlog.so", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=7524, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\300\n\0"..., 4096) =
4096
263 old_mmap(NULL, 10576, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x40238000
263 mprotect(0x4023a000, 2384, PROT_NONE) = 0
263 old_mmap(0x4023a000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5,
0x1000) = 0x4023a000
263 close(5) = 0
263 open("/lib/security/pam_motd.so", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=4296, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0p\10\0\000"..., 4096) =
4096
263 old_mmap(NULL, 7348, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x4023b000
263 mprotect(0x4023c000, 3252, PROT_NONE) = 0
263 old_mmap(0x4023c000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5, 0) =
0x4023c000
263 close(5) = 0
263 open("/lib/security/pam_mail.so", O_RDONLY) = 5
263 fstat(5, {st_mode=S_IFREG|0644, st_size=8428, ...}) = 0
263 read(5, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\320\n\0"..., 4096) =
4096
263 brk(0x8074000) = 0x8074000
263 old_mmap(NULL, 11744, PROT_READ|PROT_EXEC, MAP_PRIVATE, 5, 0) = 0x4023d000
263 mprotect(0x4023f000, 3552, PROT_NONE) = 0
263 old_mmap(0x4023f000, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED, 5,
0x1000) = 0x4023f000
263 close(5) = 0
263 read(3, "", 4096) = 0
263 close(3) = 0
263 munmap(0x40014000, 4096) = 0
263 open("/etc/pam.d/other", O_RDONLY) = 3
263 fstat(3, {st_mode=S_IFREG|0644, st_size=341, ...}) = 0
263 old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0x40014000
263 read(3, "#\n# /etc/pam.d/other - specify t"..., 4096) = 341
263 read(3, "", 4096) = 0
263 close(3) = 0
263 munmap(0x40014000, 4096) = 0
263 getuid() = 0
263 write(4, "\0\0\0\5\353y@\275\23\251lX", 12) = 12
263 select(5, [4], NULL, NULL, NULL <unfinished ...>
