From owner-FreeBSD-users-jp@jp.FreeBSD.org Wed Mar  7 22:43:40 2007
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id l27Dhe673344;
	Wed, 7 Mar 2007 22:43:40 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from cheetah.nippaku.co.jp (cheetah.nippaku.co.jp [211.6.140.162])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id l27Dhew73339
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Wed, 7 Mar 2007 22:43:40 +0900 (JST)
	(envelope-from tamotsu@nippaku.co.jp)
Received: from [192.168.100.16] (pc00.nippaku.co.jp [211.6.140.166])
	by cheetah.nippaku.co.jp (Postfix) with ESMTP id 91FC222845
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Wed,  7 Mar 2007 22:43:39 +0900 (JST)
From: Tamotsu Hasegawa <tamotsu@nippaku.co.jp>
To: FreeBSD-users-jp@jp.FreeBSD.org
In-Reply-To: <20070307194935.e1c9145a.yanagisawa@csg.is.titech.ac.jp>
References: <20070307180748.87BF.TAMOTSU@nippaku.co.jp> <20070307194935.e1c9145a.yanagisawa@csg.is.titech.ac.jp>
Message-Id: <20070307222338.26E2.TAMOTSU@nippaku.co.jp>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-2022-JP"
Content-Transfer-Encoding: 7bit
X-Mailer: Becky! ver. 2.30.02 [ja]
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Wed, 07 Mar 2007 22:43:39 +0900
X-Sequence: FreeBSD-users-jp 90425
Subject: [FreeBSD-users-jp 90425] Re: 5.4R->6.2R
 =?ISO-2022-JP?B?GyRCJEcbKEI=?= SSH
 =?ISO-2022-JP?B?GyRCJEclbSUwJSQlcyRHJC0kSiQvJEokQyRGJDcbKEI=?=
 =?ISO-2022-JP?B?GyRCJF4kQyQ/GyhC?= 
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: tamotsu@nippaku.co.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+060209

$BD9C+@n!w%K%C%Q%/(B $B$G$9!%(B

$B%3%a%s%H$"$j$,$H$&$4$6$$$^$9!%(B

 On 2007/03/07 19:49:35
 wrote: Yoshisato YANAGISAWA <yanagisawa@csg.is.titech.ac.jp>

> $B$A$J$_$K!"@_Dj%U%!%$%k$r%3%T!<$7$?8e!"(B
> localhost$B$+$iAG$N(Bssh$B$G%m%0%$%s$G$-$^$9$+!)(B
$B$$$(!$$G$-$^$;$s$G$7$?!%(B

> $B%m%0%$%s$7$h$&$H$7$?$H$-$K!"(B
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> @    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> $B$H$$$&$N$,=P$F$/$k>l9g$O!"(B.ssh/known_hosts$BCf$N3:Ev$9$k80$r(B
> $B:o=|$9$kI,MW$,$"$k$H$O;W$$$^$9$,!#(B
$B$O$$!$$3$l$OE,59BP1~$7$F:o=|$7$F$$$^$9!%(B
$B$^$?!$(BTeraTerm$B$G$O7Y9p$,=P$^$9$,3NG'%\%?%s$G$d$j2a$4$9$+!$(B
$B%U%!%$%k$rJT=8$7$F7Y9p$,=P$J$$$h$&$K$9$k$3$H$,$G$-$^$9!%(B

> $B$G$-$l$P(Bsshd -ddd$B$d(Bssh -vvv$B$N7k2L$r8+$F$_$?$$$N$G$9$,!"(B
> $B8+$;$F$$$?$@$1$J$$$G$7$g$&$+!#$b$A$m$s!"8x3+80$d%m%0%$%sL>$J$I$N>pJs$O(B
> $B!X(B(removed)$B!Y$J$I$r=q$$$F!">C$7$?J}$,NI$$$H$O;W$$$^$9$,!#(B
SSH$B$,$*$+$7$$%5!<%P$,(B1$B;~4V$/$i$$$+$+$k>l=j$K$"$C$F!$$9$G$K5"$C$F(B
$B$-$F$7$^$C$?$N$G$9$,!$(Bsshd$B$N%m%0$r;}$C$F5"$C$F$-$^$7$?$N$G8+$F(B
$B$$$?$@$1$k$H=u$+$j$^$9!%D9$/$J$j$^$9$,!$$4MF<O2<$5$$!%(B
$B%"%/%7%g%sKh$K%3%a%s%H$r$O$5$_$^$7$?$,!$J88@$,>/!9JQ$+$b$7$l$^$;$s!%(B

===$B@\B3$G$-$J$$%[%9%H$N(Bsshd$B%m%0$3$3$+$i(B===
hoge# /usr/sbin/sshd -ddd
debug2: load_server_config: filename /etc/ssh/sshd_config
debug2: load_server_config: done config len = 184
debug2: parse_server_config: config /etc/ssh/sshd_config len 184
debug3: /etc/ssh/sshd_config:62 setting PasswordAuthentication yes
debug3: /etc/ssh/sshd_config:112 setting Subsystem sftp	/usr/libexec/sftp-server
debug1: sshd version OpenSSH_4.5p1 FreeBSD-20061110
debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key.
debug1: read PEM private key done: type DSA
debug1: private host key: #0 type 2 DSA
debug1: rexec_argv[0]='/usr/sbin/sshd'
debug1: rexec_argv[1]='-ddd'
debug2: fd 3 setting O_NONBLOCK
debug1: Bind to port 22 on ::.
Server listening on :: port 22.
debug2: fd 4 setting O_NONBLOCK
debug1: Bind to port 22 on 0.0.0.0.
Server listening on 0.0.0.0 port 22.
$B!z(B
$B!z(Bsshd$B$O@\B3$NBT$A<u$1>uBV(B
$B!z(B
$B!z(BUTF-8 TeraTerm Pro$B$+$iK\%[%9%H$X@\B3<B9T(B
$B!z(B
debug1: fd 5 clearing O_NONBLOCK
debug1: Server will not fork when running in debugging mode.
debug3: send_rexec_state: entering fd = 8 config len 184
debug3: ssh_msg_send: type 0
debug3: send_rexec_state: done
debug1: rexec start in 5 out 5 newsock 5 pipe -1 sock 8
debug1: inetd sockets after dupping: 3, 3
debug1: res_init()
Connection from xxx.xxx.xxx.xxx port 1606
debug1: Client protocol version 2.0; client software version TTSSH/2.25 Win32
debug1: no match: TTSSH/2.25 Win32
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_4.5p1 FreeBSD-20061110
debug2: fd 3 setting O_NONBLOCK
debug2: Network child is on pid 5217
debug3: preauth child monitor started
debug3: mm_request_receive entering
debug3: privsep user:group 22:22
debug1: permanently_set_uid: 22/22
debug1: list_hostkey_types: ssh-dss
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-dss
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: none,zlib@openssh.com
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc
debug2: kex_parse_kexinit: hmac-sha1,hmac-md5
debug2: kex_parse_kexinit: hmac-sha1,hmac-md5
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: 
debug2: kex_parse_kexinit: first_kex_follows 0 
debug2: kex_parse_kexinit: reserved 0 
debug2: mac_init: found hmac-sha1
debug1: kex: client->server aes128-cbc hmac-sha1 none
debug2: mac_init: found hmac-sha1
debug1: kex: server->client aes128-cbc hmac-sha1 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST received
debug3: mm_request_send entering: type 0
debug3: monitor_read: checking request 0
debug3: mm_answer_moduli: got parameters: 1024 2048 8192
debug3: mm_choose_dh: waiting for MONITOR_ANS_MODULI
debug3: mm_request_receive_expect entering: type 1
debug3: mm_request_receive entering
debug3: mm_request_send entering: type 1
debug3: mm_choose_dh: remaining 0
debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent
debug2: monitor_read: 0 used once, disabling now
debug3: mm_request_receive entering
debug2: dh_gen_key: priv key bits set: 176/320
debug2: bits set: 1032/2048
debug1: expecting SSH2_MSG_KEX_DH_GEX_INIT
debug2: bits set: 990/2048
debug3: mm_key_sign entering
debug3: mm_request_send entering: type 4
debug3: monitor_read: checking request 4
debug3: mm_answer_sign
debug3: mm_answer_sign: signature 0x807a200(55)
debug3: mm_request_send entering: type 5
debug2: monitor_read: 4 used once, disabling now
debug3: mm_request_receive entering
debug3: mm_key_sign: waiting for MONITOR_ANS_SIGN
debug3: mm_request_receive_expect entering: type 5
debug3: mm_request_receive entering
debug1: SSH2_MSG_KEX_DH_GEX_REPLY sent
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: KEX done
$B!z(B
$B!z(Bsshd$B$O%f!<%6(BID$B$NBT$A<u$1>uBV(B
$B!z(B
$B!z(BUTF-8 TeraTerm Pro$B$G!$%f!<%6(BID$B$rF~NO$7!$!V(BUse challenge/
$B!z(Bresponse to log in(keyboard-interactive)$B!W$rA*Br$7$F(BOK
$B!z%\%?%s$r2!$9(B
$B!z(B
debug3: Trying to reverse map address xxx.xxx.xxx.xxx.
debug1: userauth-request for user hoge service ssh-connection method keyboard-interactive
debug1: attempt 0 failures 0
debug3: mm_getpwnamallow entering
debug3: mm_request_send entering: type 6
debug3: monitor_read: checking request 6
debug3: mm_answer_pwnamallow
debug3: Trying to reverse map address xxx.xxx.xxx.xxx.
debug3: mm_getpwnamallow: waiting for MONITOR_ANS_PWNAM
debug3: mm_request_receive_expect entering: type 7
debug3: mm_request_receive entering
debug2: parse_server_config: config reprocess config len 184
debug3: mm_answer_pwnamallow: sending MONITOR_ANS_PWNAM: 1
debug3: mm_request_send entering: type 7
debug2: monitor_read: 6 used once, disabling now
debug3: mm_request_receive entering
debug2: input_userauth_request: setting up authctxt for hoge
debug3: mm_start_pam entering
debug3: mm_request_send entering: type 45
debug3: monitor_read: checking request 45
debug1: PAM: initializing for "hoge"
debug1: PAM: setting PAM_RHOST to "xxx.xxx.xxx.xxx"
debug2: monitor_read: 45 used once, disabling now
debug3: mm_request_receive entering
debug3: mm_inform_authserv entering
debug3: mm_request_send entering: type 3
debug3: monitor_read: checking request 3
debug3: mm_answer_authserv: service=ssh-connection, style=
debug2: monitor_read: 3 used once, disabling now
debug3: mm_request_receive entering
debug2: input_userauth_request: try method keyboard-interactive
debug1: keyboard-interactive devs 
debug1: auth2_challenge: user=hoge devs=
debug1: kbdint_alloc: devices 'pam'
debug2: auth2_challenge_start: devices pam
debug2: kbdint_next_device: devices <empty>
debug1: auth2_challenge_start: trying authentication method 'pam'
debug3: mm_sshpam_init_ctx
debug3: mm_request_send entering: type 48
debug3: monitor_read: checking request 48
debug3: mm_answer_pam_init_ctx
debug3: PAM: sshpam_init_ctx entering
debug3: mm_request_send entering: type 49
debug3: mm_request_receive entering
debug3: mm_sshpam_init_ctx: waiting for MONITOR_ANS_PAM_INIT_CTX
debug3: mm_request_receive_expect entering: type 49
debug3: mm_request_receive entering
debug3: mm_sshpam_query
debug3: mm_request_send entering: type 50
debug3: monitor_read: checking request 50
debug3: mm_answer_pam_query
debug3: PAM: sshpam_query entering
debug3: ssh_msg_recv entering
debug3: PAM: sshpam_thread_conv entering, 1 messages
debug3: ssh_msg_send: type 1
debug3: mm_sshpam_query: waiting for MONITOR_ANS_PAM_QUERY
debug3: mm_request_receive_expect entering: type 51
debug3: mm_request_receive entering
debug3: mm_request_send entering: type 51
debug3: ssh_msg_recv entering
debug3: mm_sshpam_query: pam_query returned 0
Postponed keyboard-interactive for hoge from xxx.xxx.xxx.xxx port 1606 ssh2
debug3: mm_request_receive entering
$B!z(B
$B!z(Bsshd$B$O%Q%9%U%l!<%:$NBT$A<u$1>uBV(B
$B!z(B
$B!z(BUTF-8 TeraTerm Pro$B$G!$%Q%9%U%l!<%:$rF~NO$7$F(B
$B!z(BOK$B%\%?%s$r2!$9(B
$B!z(B
debug3: mm_sshpam_respond
debug3: mm_request_send entering: type 52
debug3: monitor_read: checking request 52
debug3: mm_answer_pam_respond
debug2: PAM: sshpam_respond entering, 1 responses
debug3: ssh_msg_send: type 6
debug3: mm_sshpam_respond: waiting for MONITOR_ANS_PAM_RESPOND
debug3: mm_request_receive_expect entering: type 53
debug3: mm_request_receive entering
debug3: ssh_msg_send: type 9
debug3: mm_request_send entering: type 53
debug3: mm_sshpam_respond: pam_respond returned 1
debug3: mm_sshpam_query
debug3: mm_request_send entering: type 50
debug3: mm_sshpam_query: waiting for MONITOR_ANS_PAM_QUERY
debug3: mm_request_receive_expect entering: type 51
debug3: mm_request_receive entering
debug3: mm_request_receive entering
debug3: monitor_read: checking request 50
debug3: mm_answer_pam_query
debug3: PAM: sshpam_query entering
debug3: ssh_msg_recv entering
debug3: PAM: authentication error
PAM: authentication error for hoge from xxx.xxx.xxx.xxx
debug3: mm_request_send entering: type 51
debug3: mm_sshpam_query: pam_query returned -1
debug2: auth2_challenge_start: devices <empty>
debug3: mm_sshpam_free_ctx
debug3: mm_request_send entering: type 54
debug3: mm_sshpam_free_ctx: waiting for MONITOR_ANS_PAM_FREE_CTX
debug3: mm_request_receive_expect entering: type 55
debug3: mm_request_receive entering
debug3: mm_request_receive entering
debug3: monitor_read: checking request 54
debug3: mm_answer_pam_free_ctx
debug3: PAM: sshpam_free_ctx entering
debug3: PAM: sshpam_thread_cleanup entering
debug3: mm_request_send entering: type 55
debug2: monitor_read: 54 used once, disabling now
Failed keyboard-interactive/pam for hoge from xxx.xxx.xxx.xxx port 1606 ssh2
debug3: mm_request_receive entering
debug1: userauth-request for user hoge service ssh-connection method keyboard-interactive
debug1: attempt 1 failures 1
debug2: input_userauth_request: try method keyboard-interactive
debug1: keyboard-interactive devs 
debug1: auth2_challenge: user=hoge devs=
debug1: kbdint_alloc: devices 'pam'
debug2: auth2_challenge_start: devices pam
debug2: kbdint_next_device: devices <empty>
debug1: auth2_challenge_start: trying authentication method 'pam'
debug3: mm_sshpam_init_ctx
debug3: mm_request_send entering: type 48
debug3: monitor_read: checking request 48
debug3: mm_answer_pam_init_ctx
debug3: PAM: sshpam_init_ctx entering
debug3: mm_request_send entering: type 49
debug3: mm_request_receive entering
debug3: mm_sshpam_init_ctx: waiting for MONITOR_ANS_PAM_INIT_CTX
debug3: mm_request_receive_expect entering: type 49
debug3: mm_request_receive entering
debug3: mm_sshpam_query
debug3: mm_request_send entering: type 50
debug3: monitor_read: checking request 50
debug3: mm_answer_pam_query
debug3: PAM: sshpam_query entering
debug3: ssh_msg_recv entering
debug3: PAM: sshpam_thread_conv entering, 1 messages
debug3: ssh_msg_send: type 1
debug3: mm_sshpam_query: waiting for MONITOR_ANS_PAM_QUERY
debug3: mm_request_receive_expect entering: type 51
debug3: mm_request_receive entering
debug3: mm_request_send entering: type 51
debug3: ssh_msg_recv entering
debug3: mm_sshpam_query: pam_query returned 0
Postponed keyboard-interactive for hoge from xxx.xxx.xxx.xxx port 1606 ssh2
debug3: mm_request_receive entering
debug3: mm_sshpam_respond
debug3: mm_request_send entering: type 52
debug3: monitor_read: checking request 52
debug3: mm_answer_pam_respond
debug2: PAM: sshpam_respond entering, 1 responses
debug3: ssh_msg_send: type 6
debug3: mm_sshpam_respond: waiting for MONITOR_ANS_PAM_RESPOND
debug3: mm_request_receive_expect entering: type 53
debug3: mm_request_receive entering
debug3: ssh_msg_send: type 9
debug3: mm_request_send entering: type 53
debug3: mm_sshpam_respond: pam_respond returned 1
debug3: mm_sshpam_query
debug3: mm_request_send entering: type 50
debug3: mm_sshpam_query: waiting for MONITOR_ANS_PAM_QUERY
debug3: mm_request_receive_expect entering: type 51
debug3: mm_request_receive entering
debug3: mm_request_receive entering
debug3: monitor_read: checking request 50
debug3: mm_answer_pam_query
debug3: PAM: sshpam_query entering
debug3: ssh_msg_recv entering
debug3: PAM: authentication error
PAM: authentication error for hoge from xxx.xxx.xxx.xxx
debug3: mm_request_send entering: type 51
debug3: mm_sshpam_query: pam_query returned -1
debug2: auth2_challenge_start: devices <empty>
debug3: mm_sshpam_free_ctx
debug3: mm_request_send entering: type 54
debug3: mm_sshpam_free_ctx: waiting for MONITOR_ANS_PAM_FREE_CTX
debug3: mm_request_receive_expect entering: type 55
debug3: mm_request_receive entering
debug3: mm_request_receive entering
debug3: monitor_read: checking request 54
debug3: mm_answer_pam_free_ctx
debug3: PAM: sshpam_free_ctx entering
debug3: PAM: sshpam_thread_cleanup entering
debug3: mm_request_send entering: type 55
debug2: monitor_read: 54 used once, disabling now
Failed keyboard-interactive/pam for hoge from xxx.xxx.xxx.xxx port 1606 ssh2
debug3: mm_request_receive entering
$B!z(B
$B!z(BUTF-8 TeraTerm Pro$B$O:F$S%f!<%6(BID$BF~NO%@%$%"%m%0$,I=<($5$l$k!%(B
$B!z(BDisconnect$B$G%m%0%$%s$r%-%c%s%;%k$9$k(B
$B!z(B
Connection closed by xxx.xxx.xxx.xxx
debug1: do_cleanup
debug1: do_cleanup
hoge# 
===$B@\B3$G$-$J$$%[%9%H$N(Bsshd$B%m%0$3$3$^$G(B===

> $BJ]B8$9$k$H$-$O!"(Bscript$B$r;H$&$h$j$O(Btee$B$r;H$C$F<!$N$h$&$K$d$C$?J}$,(B
> $B@)8f%3!<%I$,F~$i$:NI$$$+$bCN$l$^$;$s!#(B
> # /usr/bin/sshd -ddd |& tee sshd.log
> % ssh -vvv localhost |& tee ssh.log
tee$B%3%^%s%I$G$9$M!%;n$7$F$_$^$9!%(B

SSH$B@\B3$,@.8y$9$k!VAG$N(BFreeBSD6.2R$B!W$G$b(Bsshd$B$N%m%0$r<h$j$^$7$?$7!$(B
/etc/ssh/$B$H(B/etc/pam.d/$B$J$I$r;}$A5"$C$?$N$G$8$C$/$jHf3S$7$F$_$^$9!%(B
$B<!2s$O(B16$BF|(B($B6b(B)$B$K:n6H$,$G$-$kM=Dj$G$9$N$G!$$b$&$7$P$i$/$*IU$-9g$$(B
$B$$$?$@$1$k$H=u$+$j$^$9!%$h$m$7$/$*4j$$$$$?$7$^$9!%(B

/* $BD9C+@n(B $BJ](B $B!w(B ($B3t(B)$B%K%C%Q%/(B */

