[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
I ran into the same issue connecting from 13.10 to 12.04. In order to fix I had to uncomment both the Ciphers line in virbal's fix and the MACs line. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
I have the same problem running Linux Mint Debian Edition 201303 connecting to both an Ubuntu and Red Hat servers. Editing the ciphers line works for me too. ** Also affects: openssh (Debian) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Status changed to 'Confirmed' because the bug affects multiple users. ** Changed in: openssh (Ubuntu) Status: New = Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Got the same problem: ihanick@bb:~/ecu$ lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description:Ubuntu 12.04.1 LTS Release:12.04 Codename: precise ihanick@bb:~/ecu$ ssh -V OpenSSH_5.9p1 Debian-5ubuntu1, OpenSSL 1.0.1 14 Mar 2012 trying to ssh from 12.04 host to 10.04: .. debug2: kex_parse_kexinit: debug2: kex_parse_kexinit: debug2: kex_parse_kexinit: first_kex_follows 0 debug2: kex_parse_kexinit: reserved 0 debug2: mac_setup: found hmac-md5 debug1: kex: server-client aes128-ctr hmac-md5 none debug2: mac_setup: found hmac-md5 debug1: kex: client-server aes128-ctr hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP After disabling hmac-md5, by using MACs hmac-sha1,umac...@openssh.com ,hmac-ripemd160 in /etc/ssh/ssh_config -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Just as another data point, I can ssh fine from Ubuntu 11.10 and Ubuntu 12.04 to ssh servers running on CentOS 5 (OpenSSH 4.3) and CentOS 6 (OpenSSH 5.3). -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Just to note that virbal's fix worked for me connecting to RHEL and getting the same problem, but by comment out he means make it so that the Ciphers line *isn't* commented out. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
I have a same problem. In /etc/ssh/ssh_config comment out the line Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des- cbc It worked for me. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
I have the same problem ssh'ing from a 11.04 box (running openssh 5.8) to a 10.04 box (running openssh 5.3). I've tried with three different clients all on the same network, two of with have 11.04 and one of which has 10.04. All are connecting to the same server Only the 10.04 box is able to connect. I believe the MTU's are the same on all the boxes. This seems like an incompatibility between different versions of OpenSSH. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
This issue still exists for me when trying to ssh from 11.04 box to a 10.04 box. ** Changed in: openssh (Ubuntu) Status: Invalid = New -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Matt, did you try ensuring that the MTU's are the same on both machines? Try using tracepath... tracepath remote.host Should give some idea. ** Changed in: openssh (Ubuntu) Importance: Undecided = Medium -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/174168 Title: expecting SSH2_MSG_KEX_DH_GEX_GROUP To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/174168/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Same problem trying to connect to Github, MTU trick did not help. I'm running Jaunty pa...@darkstar:~$ uname -a Linux darkstar 2.6.28-12-generic #43-Ubuntu SMP Fri May 1 19:31:32 UTC 2009 x86_64 GNU/Linux pa...@darkstar:~$ ssh -v g...@github.com OpenSSH_5.1p1 Debian-5ubuntu1, OpenSSL 0.9.8g 19 Oct 2007 debug1: Reading configuration data /home/paolo/.ssh/config debug1: Applying options for * debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to github.com [65.74.177.129] port 22. debug1: Connection established. debug1: identity file /home/paolo/.ssh/identity type -1 debug1: identity file /home/paolo/.ssh/id_rsa type -1 debug1: identity file /home/paolo/.ssh/id_dsa type 2 debug1: Checking blacklist file /usr/share/ssh/blacklist.DSA-2048 debug1: Checking blacklist file /etc/ssh/blacklist.DSA-2048 debug1: Remote protocol version 2.0, remote software version OpenSSH_4.7 debug1: match: OpenSSH_4.7 pat OpenSSH_4* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.1p1 Debian-5ubuntu1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server-client aes128-cbc hmac-md5 none debug1: kex: client-server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP Connection closed by 65.74.177.129 -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
Re: [Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Server might be getting DOS'd. Tweak MaxStartups in sshd_conf Ken. From: Paolo Stancato paolodo...@yahoo.com.ar To: tommymcgui...@yahoo.com.au Sent: Monday, 1 June, 2009 10:22:11 AM Subject: [Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP Same problem trying to connect to Github, MTU trick did not help. I'm running Jaunty pa...@darkstar:~$ uname -a Linux darkstar 2.6.28-12-generic #43-Ubuntu SMP Fri May 1 19:31:32 UTC 2009 x86_64 GNU/Linux pa...@darkstar:~$ ssh -v g...@github.com OpenSSH_5.1p1 Debian-5ubuntu1, OpenSSL 0.9.8g 19 Oct 2007 debug1: Reading configuration data /home/paolo/.ssh/config debug1: Applying options for * debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to github.com [65.74.177.129] port 22. debug1: Connection established. debug1: identity file /home/paolo/.ssh/identity type -1 debug1: identity file /home/paolo/.ssh/id_rsa type -1 debug1: identity file /home/paolo/.ssh/id_dsa type 2 debug1: Checking blacklist file /usr/share/ssh/blacklist.DSA-2048 debug1: Checking blacklist file /etc/ssh/blacklist.DSA-2048 debug1: Remote protocol version 2.0, remote software version OpenSSH_4.7 debug1: match: OpenSSH_4.7 pat OpenSSH_4* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_5.1p1 Debian-5ubuntu1 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server-client aes128-cbc hmac-md5 none debug1: kex: client-server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP Connection closed by 65.74.177.129 -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a direct subscriber of the bug. Status in “openssh” source package in Ubuntu: Invalid Bug description: Server Connected to Escape character is '^]'. SSH-2.0-OpenSSH_4.5 Client Local version string SSH-2.0-OpenSSH_4.6p1 Debian-5build1 = The client can not log into the server - stops @ the last line (see below) Client / server speak ver. 2.0 Connection server to client OK !!! Connection client to server NOT OK!! debug2: kex_parse_kexinit: first_kex_follows 0 debug2: kex_parse_kexinit: reserved 0 debug2: mac_init: found hmac-md5 debug1: kex: server-client aes128-cbc hmac-md5 none debug2: mac_init: found hmac-md5 debug1: kex: client-server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(102410248192) sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP Need a Holiday? Win a $10,000 Holiday of your choice. Enter now.http://us.lrd.yahoo.com/_ylc=X3oDMTJxN2x2ZmNpBF9zAzIwMjM2MTY2MTMEdG1fZG1lY2gDVGV4dCBMaW5rBHRtX2xuawNVMTEwMzk3NwR0bV9uZXQDWWFob28hBHRtX3BvcwN0YWdsaW5lBHRtX3BwdHkDYXVueg--/SIG=14600t3ni/**http%3A//au.rd.yahoo.com/mail/tagline/creativeholidays/*http%3A//au.docs.yahoo.com/homepageset/%3Fp1=other%26p2=au%26p3=mailtagline -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Well, I did not install jaunty, but i recompiled the jaunty sources on intrepid and also the latest upstream sources (5.2p1). Both show exaclty the same behaviour for me (ssh hangs with the debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP message) The MTU trick did not work for me either. And even if that worked, this is not really an option in a GigE network. -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Thanks for taking the time to report this bug. Marking as invalid as two different statements it is either patched or connected to network issues. If you feel at any time that this bug is valid on recent Ubuntu (Jaunty), feel free to reopen this bug again. ** Changed in: openssh (Ubuntu) Status: New = Invalid -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
This solved it for me: http://www.snailbook.com/faq/mtu-mismatch.auto.html You probably have an MTU/fragmentation problem. For each network interface on both client and server set the MTU to 576, eg ifconfig eth0 mtu 576 If 576 doesn't work try 1000. -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
The following describes the bug you are having with openssh and says this will be fixed in version 5.2 they are patches attached to these bugs, i have not tried them though. https://bugzilla.mindrot.org/show_bug.cgi?id=1363 -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 174168] Re: expecting SSH2_MSG_KEX_DH_GEX_GROUP
Opps i mean version 5.1 -- expecting SSH2_MSG_KEX_DH_GEX_GROUP https://bugs.launchpad.net/bugs/174168 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs