Hi Matt,
Make sure you have /etc/ssh2/ssh2_config set to zero (0) in RekeyIntervalSeconds. Your
output mentions this:
> debug: Ssh2Transport/trcommon.c:789/ssh_tr_input_version: Remote version has
> rekey incompatibility bug.
-Anne
On Mon, Jan 15, 2001 at 09:49:40AM -0700, Matt Beland wrote:
> There seems to be an odd bug in SSH 2.4.0. When connecting to certain hosts
> (shell.sourceforge.net is one prominent example) the connection always fails
> with the error
>
> Disconnected; MAC error (Message authentication check fails.).
>
> This happens before the password prompt is displayed. Another machine running
> 2.3.0 connects fine.
>
> Here's the relevent portion of the -v output:
>
> debug: ssh_client_wrap: creating transport protocol
> debug:
> SshAuthMethodClient/sshauthmethodc.c:117/ssh_client_authentication_initia
> lize: Added "publickey" to usable methods.
> debug:
> SshAuthMethodClient/sshauthmethodc.c:117/ssh_client_authentication_initia
> lize: Added "password" to usable methods.
> debug: Ssh2Client/sshclient.c:1142/ssh_client_wrap: creating userauth protocol
> debug: Ssh2Common/sshcommon.c:502/ssh_common_wrap: local ip = 10.100.151.21,
> loc
> al port = 3061
> debug: Ssh2Common/sshcommon.c:504/ssh_common_wrap: remote ip =
> 216.136.171.201,
> remote port = 22
> debug: SshConnection/sshconn.c:1866/ssh_conn_wrap: Wrapping...
> debug: Ssh2Transport/trcommon.c:599/ssh_tr_input_version: Remote version:
> SSH-1.99-OpenSSH_2.2.0p1
> debug: Ssh2Transport/trcommon.c:789/ssh_tr_input_version: Remote version has
> rek
> ey incompatibility bug.
> debug: Ssh2Transport/trcommon.c:1120/ssh_tr_negotiate: c_to_s: cipher
> 3des-cbc,
> mac hmac-sha1, compression none
> debug: Ssh2Transport/trcommon.c:1123/ssh_tr_negotiate: s_to_c: cipher
> 3des-cbc,
> mac hmac-sha1, compression none
> debug: Ssh2Client/sshclient.c:406/keycheck_key_match: Host key found from
> databa
> se.
> debug: Ssh2Common/sshcommon.c:137/ssh_common_disconnect: DISCONNECT received:
> Me
> ssage authentication check fails.
> warning: Authentication failed.
> debug: Ssh2/ssh2.c:85/client_disconnect: locally_generated = TRUE
> Disconnected; MAC error (Message authentication check fails.).
> debug: uninitializing event loop
>
>
> Anyone else seeing something like this?
>
-------------------------------------------------------------------------
Anne Carasik | The 4th Division of Paperclips has
Principal Security Consultant | overrun the Pushpin Infantry and
SSH Communications Security, Inc. | General White-Out has called for
Email: [EMAIL PROTECTED] | a new skirmish.
-------------------------------------------------------------------------
PGP Key fingerprint = DA01 3999 6A1C 8124 7EA1 345F 4313 736C 1849 1F98
-------------------------------------------------------------------------
Unless stated otherwise above, the opinions expressed herein are my own,
not of my employer.
