where is the documentation for ssh's type xx messages
off topic mostly but an example of getting ssh log messages on ubuntu 22.10
I decided to see what my linux system had for error messages
|$ journalctl -u ssh --since yesterday
over 17000 lines of outputs
3242 transactions indicating rejected connection attempts
one example
|Apr 26 17:26:39 drdoom sshd[31371]: Invalid user marcos from
223.197.188.206 port 59378
Apr 26 17:26:39 drdoom sshd[31371]: pam_unix(sshd:auth): check pass;
user unknown
Apr 26 17:26:39 drdoom sshd[31371]: pam_unix(sshd:auth): authentication
failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.188.206
Apr 26 17:26:41 drdoom sshd[31371]: Failed password for invalid user
marcos from 223.197.188.206 port 59378 ssh2
Apr 26 17:26:41 drdoom sshd[31371]: Received disconnect from
223.197.188.206 port 59378:11: Bye Bye [preauth]
Apr 26 17:26:41 drdoom sshd[31371]: Disconnected from invalid user
marcos 223.197.188.206 port 59378 [preauth]
whois gives 93 lines of info for that IP, basically
PCCW IMS Ltd (PCCW Business Internet Access)
26/F, PCCW TOWER
TAIKOO PLACE
979 KINGS ROAD
QUARRY BAY, HONG KONG
I guess the good news is there were no Accepted connections listed.
steve
Russell Senior wrote:
"
debug1: Offering public key: /home/rshepard/.ssh/id_ed25519 ED25519
SHA256:kzkp07EYCHEBeOLgGgKYbPGD1IdtDpJl2gPVSfYYXtk
debug3: send packet: type 50
debug2: we sent a publickey packet, wait for reply
debug3: receive packet: type 51
"
type 51 is an indication that the server is rejecting the key you are
trying to use. Success would be type 52. You need to look at the salmo logs
to find out why.
On Wed, Apr 26, 2023 at 11:09 AM Rich Shepard <[email protected]>
wrote:
On Wed, 26 Apr 2023, MC_Sequoia wrote:
Here's where I think the problem is:
"debug1: Trying private key: /home/rshepard/.ssh/id_ed25519_sk
debug3: no such identity: /home/rshepard/.ssh/id_ed25519_sk: No such
file or directory
debug1: Trying private key: /home/rshepard/.ssh/id_xmss
debug3: no such identity: /home/rshepard/.ssh/id_xmss: No such file or
directory
debug1: Trying private key: /home/rshepard/.ssh/id_dsa
debug3: no such identity: /home/rshepard/.ssh/id_dsa: No such file or
directory
debug2: we did not send a packet, disable method"
Mike,
There are no _sk suffixes or _xmss in either salmo/.ssh/ or caddis/.ssh/.
Salmo's ssh:
ssh_host_dsa_key.pub
ssh_host_ed25519_key
ssh_host_rsa_key.pub
ssh_config
ssh_host_ecdsa_key
ssh_host_ed25519_key.pub
sshd_config
ssh_host_dsa_key
ssh_host_ecdsa_key.pub
ssh_host_rsa_key
I'll futz with this later today.
What's interesting is that I've not had these issues with any other desktop
or laptop over the past 25+/- years.
Thanks,
Rich
