Hi, I have compiled OpenSSH 2.5.2p2 on SunOS 5.6, I compiled it with gcc v2.95.2, OpenSSL 0.9.6, ZLib 1.1.3 and with /dev/urandom support. The compile completes with no error's and the daemon starts up fine, the ssh client is fine until it connects to some of our OpenSSH 2.3.0p1 servers, it returns a bad packet length error. A debug of one of the connects follows: [brucem@bcsun30 brucem]$ ssh -v -v scdev OpenSSH_2.5.2p2, SSH protocols 1.5/2.0, OpenSSL 0x0090600f debug1: Seeding random number generator debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: ssh_connect: getuid 1001 geteuid 0 anon 1 debug1: Connecting to scdev [13.219.4.12] port 22. debug1: Connection established. debug1: identity file /export/home/brucem/.ssh/identity type 0 debug2: key_type_from_name: unknown key type '-----BEGIN' debug2: key_type_from_name: unknown key type '-----END' debug1: identity file /export/home/brucem/.ssh/id_dsa type 2 debug1: unknown identity file /export/home/brucem/.ssh/id_rsa1 debug1: identity file /export/home/brucem/.ssh/id_rsa1 type -1 debug1: unknown identity file /export/home/brucem/.ssh/id_rsa2 debug1: identity file /export/home/brucem/.ssh/id_rsa2 type -1 debug1: Remote protocol version 1.99, remote software version OpenSSH_2.3.0p1 debug1: match: OpenSSH_2.3.0p1 pat ^OpenSSH_2\.3\.0 Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_2.5.2p2 debug1: send KEXINIT debug1: done debug1: wait KEXINIT debug1: got kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 debug1: got kexinit: ssh-dss debug1: got kexinit: 3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes128-cbc,aes192-cbc,aes256-cbc,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,[EMAIL PROTECTED] debug1: got kexinit: 3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes128-cbc,aes192-cbc,aes256-cbc,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,[EMAIL PROTECTED] debug1: got kexinit: hmac-sha1,hmac-md5,[EMAIL PROTECTED] debug1: got kexinit: hmac-sha1,hmac-md5,[EMAIL PROTECTED] debug1: got kexinit: none,zlib debug1: got kexinit: none,zlib debug1: got kexinit: debug1: got kexinit: debug1: first kex follow: 0 debug1: reserved: 0 debug1: done debug2: mac_init: found hmac-md5 debug1: kex: server->client aes128-cbc hmac-md5 none debug2: mac_init: found hmac-md5 debug1: kex: client->server aes128-cbc hmac-md5 none debug1: Sending SSH2_MSG_KEX_DH_GEX_REQUEST. debug1: Wait SSH2_MSG_KEX_DH_GEX_GROUP. debug1: Got SSH2_MSG_KEX_DH_GEX_GROUP. debug1: dh_gen_key: priv key bits set: 124/256 debug1: bits set: 522/1024 debug1: Sending SSH2_MSG_KEX_DH_GEX_INIT. debug1: Wait SSH2_MSG_KEX_DH_GEX_REPLY. debug1: Got SSH2_MSG_KEXDH_REPLY. debug1: Host 'scdev' is known and matches the DSA host key. debug1: Found key in /export/home/brucem/.ssh/known_hosts2:3 debug1: bits set: 511/1024 debug1: len 55 datafellows 128 debug1: ssh_dss_verify: signature correct debug1: Wait SSH2_MSG_NEWKEYS. debug1: GOT SSH2_MSG_NEWKEYS. debug1: send SSH2_MSG_NEWKEYS. debug1: done: send SSH2_MSG_NEWKEYS. debug1: done: KEX2. debug1: send SSH2_MSG_SERVICE_REQUEST e0 4e 4f 7b 16 fc 02 15 d6 25 53 dc 19 e2 71 c2 Disconnecting: Bad packet length -531738757. debug1: Calling cleanup 0x46070(0x0) This is an intermittant error, as it connects fine to some of our other server's running the same version of sshd (2.3.0p1). Is this a problem with the ssh client in ssh v2.5.2p2 or is there something I am missing with regards the key sizes or is there a problem with the ssh-keygen in ssh v2.3.0p1? Any suggestions would be greatly appreciated. Thanks in advance Bruce McAlister
