Hi, I have been using OpenSSH v4.1p1 with OpenSSL 9.7g for some time without any issues. I recently built OpenSSH v4.2p1 with OpenSSL 9.8a for a Solaris 8 system. I built it the same way as the previous versions.
Unfortunately with the newer version I have intermittent problems connecting to the SSH server. Often times the session fails to establish and the log files seem to indicate that the connection process fails during DH key exchange. During a connection attempt from a PuTTY client the log messages are as noted below. Anyone else having an issue similar to this? The session establishment just fails randomly. Sometimes it works, sometime it does not. It was very reliable when I was running the OpenSSH v4.1p1 / OpenSSL 9.7g versions. The log messages on the Solaris 8 server side are: Dec 20 10:59:57 syscen sshd[22570]: [ID 800047 auth.debug] debug1: fd 4 clearing O_NONBLOCK Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: rexec start in 4 out 4 newsock 4 pipe 6 sock 9 Dec 20 10:59:57 syscen sshd[22570]: [ID 800047 auth.debug] debug1: Forked child 26051. Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: inetd sockets after dupping: 3, 3 Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: Client protocol version 2.0; client software version PuTTY_Release_0.58 Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: no match: PuTTY_Release_0.58 Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: Enabling compatibility mode for protocol 2.0 Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: Local version string SSH-2.0-OpenSSH_4.2 Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: list_hostkey_types: ssh-rsa,ssh-dss Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: SSH2_MSG_KEXINIT sent Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: SSH2_MSG_KEXINIT received Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: kex: client->server aes256-cbc hmac-sha1 none Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: kex: server->client aes256-cbc hmac-sha1 none Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: SSH2_MSG_KEX_DH_GEX_REQUEST_OLD received Dec 20 10:59:57 syscen sshd[26051]: [ID 800047 auth.debug] debug1: SSH2_MSG_KEX_DH_GEX_GROUP sent The client PuTTY log shows: =~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2005.12.20 10:59:54 =~=~=~=~=~=~=~=~=~=~=~= Event Log: Writing new session log (SSH packets mode) to file: C:\Documents and Settings\Administrator\Desktop\putty.log Event Log: Looking up host "159.63.73.181" Event Log: Connecting to 159.63.73.181 port 22 Event Log: Server version: SSH-2.0-OpenSSH_4.2 Event Log: We claim version: SSH-2.0-PuTTY_Release_0.58 Event Log: Using SSH protocol version 2 Incoming packet type 20 / 0x14 (SSH2_MSG_KEXINIT) 00000000 0c cc 00 f4 44 0a ba 08 9e 6d d1 7d d5 89 08 bc ....D....m.}.... 00000010 00 00 00 59 64 69 66 66 69 65 2d 68 65 6c 6c 6d ...Ydiffie-hellm 00000020 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 an-group-exchang 00000030 65 2d 73 68 61 31 2c 64 69 66 66 69 65 2d 68 65 e-sha1,diffie-he 00000040 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 llman-group14-sh 00000050 61 31 2c 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 a1,diffie-hellma 00000060 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 00 00 00 n-group1-sha1... 00000070 0f 73 73 68 2d 72 73 61 2c 73 73 68 2d 64 73 73 .ssh-rsa,ssh-dss 00000080 00 00 00 9d 61 65 73 31 32 38 2d 63 62 63 2c 33 ....aes128-cbc,3 00000090 64 65 73 2d 63 62 63 2c 62 6c 6f 77 66 69 73 68 des-cbc,blowfish 000000a0 2d 63 62 63 2c 63 61 73 74 31 32 38 2d 63 62 63 -cbc,cast128-cbc 000000b0 2c 61 72 63 66 6f 75 72 31 32 38 2c 61 72 63 66 ,arcfour128,arcf 000000c0 6f 75 72 32 35 36 2c 61 72 63 66 6f 75 72 2c 61 our256,arcfour,a 000000d0 65 73 31 39 32 2d 63 62 63 2c 61 65 73 32 35 36 es192-cbc,aes256 000000e0 2d 63 62 63 2c 72 69 6a 6e 64 61 65 6c 2d 63 62 -cbc,rijndael-cb 000000f0 63 40 6c 79 73 61 74 6f 72 2e 6c 69 75 2e 73 65 [EMAIL PROTECTED] 00000100 2c 61 65 73 31 32 38 2d 63 74 72 2c 61 65 73 31 ,aes128-ctr,aes1 00000110 39 32 2d 63 74 72 2c 61 65 73 32 35 36 2d 63 74 92-ctr,aes256-ct 00000120 72 00 00 00 9d 61 65 73 31 32 38 2d 63 62 63 2c r....aes128-cbc, 00000130 33 64 65 73 2d 63 62 63 2c 62 6c 6f 77 66 69 73 3des-cbc,blowfis 00000140 68 2d 63 62 63 2c 63 61 73 74 31 32 38 2d 63 62 h-cbc,cast128-cb 00000150 63 2c 61 72 63 66 6f 75 72 31 32 38 2c 61 72 63 c,arcfour128,arc 00000160 66 6f 75 72 32 35 36 2c 61 72 63 66 6f 75 72 2c four256,arcfour, 00000170 61 65 73 31 39 32 2d 63 62 63 2c 61 65 73 32 35 aes192-cbc,aes25 00000180 36 2d 63 62 63 2c 72 69 6a 6e 64 61 65 6c 2d 63 6-cbc,rijndael-c 00000190 62 63 40 6c 79 73 61 74 6f 72 2e 6c 69 75 2e 73 [EMAIL PROTECTED] 000001a0 65 2c 61 65 73 31 32 38 2d 63 74 72 2c 61 65 73 e,aes128-ctr,aes 000001b0 31 39 32 2d 63 74 72 2c 61 65 73 32 35 36 2d 63 192-ctr,aes256-c 000001c0 74 72 00 00 00 55 68 6d 61 63 2d 6d 64 35 2c 68 tr...Uhmac-md5,h 000001d0 6d 61 63 2d 73 68 61 31 2c 68 6d 61 63 2d 72 69 mac-sha1,hmac-ri 000001e0 70 65 6d 64 31 36 30 2c 68 6d 61 63 2d 72 69 70 pemd160,hmac-rip 000001f0 65 6d 64 31 36 30 40 6f 70 65 6e 73 73 68 2e 63 [EMAIL PROTECTED] 00000200 6f 6d 2c 68 6d 61 63 2d 73 68 61 31 2d 39 36 2c om,hmac-sha1-96, 00000210 68 6d 61 63 2d 6d 64 35 2d 39 36 00 00 00 55 68 hmac-md5-96...Uh 00000220 6d 61 63 2d 6d 64 35 2c 68 6d 61 63 2d 73 68 61 mac-md5,hmac-sha 00000230 31 2c 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 1,hmac-ripemd160 00000240 2c 68 6d 61 63 2d 72 69 70 65 6d 64 31 36 30 40 ,hmac-ripemd160@ 00000250 6f 70 65 6e 73 73 68 2e 63 6f 6d 2c 68 6d 61 63 openssh.com,hmac 00000260 2d 73 68 61 31 2d 39 36 2c 68 6d 61 63 2d 6d 64 -sha1-96,hmac-md 00000270 35 2d 39 36 00 00 00 1a 6e 6f 6e 65 2c 7a 6c 69 5-96....none,zli 00000280 62 40 6f 70 65 6e 73 73 68 2e 63 6f 6d 2c 7a 6c [EMAIL PROTECTED],zl 00000290 69 62 00 00 00 1a 6e 6f 6e 65 2c 7a 6c 69 62 40 ib....none,zlib@ 000002a0 6f 70 65 6e 73 73 68 2e 63 6f 6d 2c 7a 6c 69 62 openssh.com,zlib 000002b0 00 00 00 00 00 00 00 00 00 00 00 00 00 ............. Outgoing packet type 20 / 0x14 (SSH2_MSG_KEXINIT) 00000000 45 4a ff e7 9f 5d ea 80 e8 05 33 16 6c be e7 b7 EJ...]....3.l... 00000010 00 00 00 59 64 69 66 66 69 65 2d 68 65 6c 6c 6d ...Ydiffie-hellm 00000020 61 6e 2d 67 72 6f 75 70 2d 65 78 63 68 61 6e 67 an-group-exchang 00000030 65 2d 73 68 61 31 2c 64 69 66 66 69 65 2d 68 65 e-sha1,diffie-he 00000040 6c 6c 6d 61 6e 2d 67 72 6f 75 70 31 34 2d 73 68 llman-group14-sh 00000050 61 31 2c 64 69 66 66 69 65 2d 68 65 6c 6c 6d 61 a1,diffie-hellma 00000060 6e 2d 67 72 6f 75 70 31 2d 73 68 61 31 00 00 00 n-group1-sha1... 00000070 0f 73 73 68 2d 72 73 61 2c 73 73 68 2d 64 73 73 .ssh-rsa,ssh-dss 00000080 00 00 00 82 61 65 73 32 35 36 2d 63 62 63 2c 72 ....aes256-cbc,r 00000090 69 6a 6e 64 61 65 6c 32 35 36 2d 63 62 63 2c 72 ijndael256-cbc,r 000000a0 69 6a 6e 64 61 65 6c 2d 63 62 63 40 6c 79 73 61 [EMAIL PROTECTED] 000000b0 74 6f 72 2e 6c 69 75 2e 73 65 2c 61 65 73 31 39 tor.liu.se,aes19 000000c0 32 2d 63 62 63 2c 72 69 6a 6e 64 61 65 6c 31 39 2-cbc,rijndael19 000000d0 32 2d 63 62 63 2c 61 65 73 31 32 38 2d 63 62 63 2-cbc,aes128-cbc 000000e0 2c 72 69 6a 6e 64 61 65 6c 31 32 38 2d 63 62 63 ,rijndael128-cbc 000000f0 2c 62 6c 6f 77 66 69 73 68 2d 63 62 63 2c 33 64 ,blowfish-cbc,3d 00000100 65 73 2d 63 62 63 00 00 00 82 61 65 73 32 35 36 es-cbc....aes256 00000110 2d 63 62 63 2c 72 69 6a 6e 64 61 65 6c 32 35 36 -cbc,rijndael256 00000120 2d 63 62 63 2c 72 69 6a 6e 64 61 65 6c 2d 63 62 -cbc,rijndael-cb 00000130 63 40 6c 79 73 61 74 6f 72 2e 6c 69 75 2e 73 65 [EMAIL PROTECTED] 00000140 2c 61 65 73 31 39 32 2d 63 62 63 2c 72 69 6a 6e ,aes192-cbc,rijn 00000150 64 61 65 6c 31 39 32 2d 63 62 63 2c 61 65 73 31 dael192-cbc,aes1 00000160 32 38 2d 63 62 63 2c 72 69 6a 6e 64 61 65 6c 31 28-cbc,rijndael1 00000170 32 38 2d 63 62 63 2c 62 6c 6f 77 66 69 73 68 2d 28-cbc,blowfish- 00000180 63 62 63 2c 33 64 65 73 2d 63 62 63 00 00 00 17 cbc,3des-cbc.... 00000190 68 6d 61 63 2d 73 68 61 31 2c 68 6d 61 63 2d 6d hmac-sha1,hmac-m 000001a0 64 35 2c 6e 6f 6e 65 00 00 00 17 68 6d 61 63 2d d5,none....hmac- 000001b0 73 68 61 31 2c 68 6d 61 63 2d 6d 64 35 2c 6e 6f sha1,hmac-md5,no 000001c0 6e 65 00 00 00 09 6e 6f 6e 65 2c 7a 6c 69 62 00 ne....none,zlib. 000001d0 00 00 09 6e 6f 6e 65 2c 7a 6c 69 62 00 00 00 00 ...none,zlib.... 000001e0 00 00 00 00 00 00 00 00 00 ......... Event Log: Doing Diffie-Hellman group exchange Outgoing packet type 30 / 0x1e (SSH2_MSG_KEX_DH_GEX_REQUEST) 00000000 00 00 08 00 .... Incoming packet type 31 / 0x1f (SSH2_MSG_KEX_DH_GEX_GROUP) 00000000 00 00 01 01 00 ff ff ff ff ff ff ff ff c9 0f da ................ 00000010 a2 21 68 c2 34 c4 c6 62 8b 80 dc 1c d1 29 02 4e .!h.4..b.....).N 00000020 08 8a 67 cc 74 02 0b be a6 3b 13 9b 22 51 4a 08 ..g.t....;.."QJ. 00000030 79 8e 34 04 dd ef 95 19 b3 cd 3a 43 1b 30 2b 0a y.4.......:C.0+. 00000040 6d f2 5f 14 37 4f e1 35 6d 6d 51 c2 45 e4 85 b5 m._.7O.5mmQ.E... 00000050 76 62 5e 7e c6 f4 4c 42 e9 a6 37 ed 6b 0b ff 5c vb^~..LB..7.k..\ 00000060 b6 f4 06 b7 ed ee 38 6b fb 5a 89 9f a5 ae 9f 24 ......8k.Z.....$ 00000070 11 7c 4b 1f e6 49 28 66 51 ec e4 5b 3d c2 00 7c .|K..I(fQ..[=..| 00000080 b8 a1 63 bf 05 98 da 48 36 1c 55 d3 9a 69 16 3f ..c....H6.U..i.? 00000090 a8 fd 24 cf 5f 83 65 5d 23 dc a3 ad 96 1c 62 f3 ..$._.e]#.....b. 000000a0 56 20 85 52 bb 9e d5 29 07 70 96 96 6d 67 0c 35 V .R...).p..mg.5 000000b0 4e 4a bc 98 04 f1 74 6c 08 ca 18 21 7c 32 90 5e NJ....tl...!|2.^ 000000c0 46 2e 36 ce 3b e3 9e 77 2c 18 0e 86 03 9b 27 83 F.6.;..w,.....'. 000000d0 a2 ec 07 a2 8f b5 c5 5d f0 6f 4c 52 c9 de 2b cb .......].oLR..+. 000000e0 f6 95 58 17 18 39 95 49 7c ea 95 6a e5 15 d2 26 ..X..9.I|..j...& 000000f0 18 98 fa 05 10 15 72 8e 5a 8a ac aa 68 ff ff ff ......r.Z...h... 00000100 ff ff ff ff ff 00 00 00 01 02 .......... Event Log: Doing Diffie-Hellman key exchange Outgoing packet type 32 / 0x20 (SSH2_MSG_KEX_DH_GEX_INIT) 00000000 00 00 01 00 3b fe 69 f1 86 bf 5b d9 5a d9 b4 85 ....;.i...[.Z... 00000010 cc 60 9b ce 30 31 2b 90 39 c5 99 34 7d e3 45 4e .`..01+.9..4}.EN 00000020 8a 9a 22 1d e9 0b 97 1f e8 eb ab 39 01 85 51 da .."........9..Q. 00000030 64 ab d2 16 c4 3b 89 30 a2 6d 50 53 02 96 43 9b d....;.0.mPS..C. 00000040 10 34 5e 7c d6 aa 1b 74 ba 92 04 fa 5f 23 cc ea .4^|...t...._#.. 00000050 e4 9c f4 20 9d 5e 17 4e 75 72 ff 56 c3 91 8a a0 ... .^.Nur.V.... 00000060 d5 ae 8d 25 61 69 b0 10 ed b0 55 e0 cd 39 f3 ef ...%ai....U..9.. 00000070 78 ff f9 98 83 c1 17 a0 ac 21 9f 71 3e d5 95 ef x........!.q>... 00000080 12 61 1f f9 cb 13 1b 2f 08 65 27 77 fd 6e 8f 95 .a...../.e'w.n.. 00000090 81 92 c4 37 6f 1b 57 00 d9 96 5c 70 05 e7 da 2a ...7o.W...\p...* 000000a0 8f 96 72 13 94 23 17 c8 34 c9 35 2c a5 42 6c 00 ..r..#..4.5,.Bl. 000000b0 9f 76 65 1f 9e 45 d9 2e 9c fb 4a 5a 7c 5e 0a b8 .ve..E....JZ|^.. 000000c0 df 46 08 cf 13 c8 7a ac 45 b4 81 98 78 14 41 32 .F....z.E...x.A2 000000d0 c4 8e e3 79 b7 8d f6 84 5f a3 18 9e 35 33 70 f6 ...y...._...53p. 000000e0 47 8b 55 91 2f 07 df 42 d6 33 95 09 5e 30 61 a1 G.U./..B.3..^0a. 000000f0 3e 21 08 8c 61 5a 6f de 68 b5 76 c8 50 6a 6f 0d >!..aZo.h.v.Pjo. 00000100 70 18 59 57 p.YW DISCLAIMER: Important Notice ************************************************* This e-mail may contain information that is confidential, privileged or otherwise protected from disclosure. If you are not an intended recipient of this e-mail, do not duplicate or redistribute it by any means. Please delete it and any attachments and notify the sender that you have received it in error. Unintended recipients are prohibited from taking action on the basis of information in this e-mail.E-mail messages may contain computer viruses or other defects, may not be accurately replicated on other systems, or may be intercepted, deleted or interfered with without the knowledge of the sender or the intended recipient. If you are not comfortable with the risks associated with e-mail messages, you may decide not to use e-mail to communicate with IPC. IPC reserves the right, to the extent and under circumstances permitted by applicable law, to retain, monitor and intercept e-mail messages to and from its systems.
