�
Report forwarded to debian-bugs-dist@lists.debian.org, Matthew Vernon <matthew@debian.org>:
Bug#122602; Package ssh.
�
�
debian-bugs-dist@lists.debian.org�Matthew Vernon
�
X-Loop: owner@bugs.debian.org
Subject: Bug#122602: ssh: Listen on multiple ports when misconfigured / bad logging
Reply-To: Eckhard Sebastian Maass , 122602@bugs.debian.org
Resent-From: Eckhard Sebastian Maass
Resent-To: debian-bugs-dist@lists.debian.org
Resent-CC: Matthew Vernon
Resent-Date: Wed, 05 Dec 2001 21:03:02 GMT
Resent-Message-ID:
Resent-Sender: owner@bugs.debian.org
X-Debian-PR-Message: report 122602
X-Debian-PR-Package: ssh
X-Debian-PR-Keywords:
Received: via spool by submit@bugs.debian.org id=B.10075856906209
(code B ref -1); Wed, 05 Dec 2001 21:03:02 GMT
Date: Wed, 5 Dec 2001 21:54:16 +0100
From: Eckhard Sebastian Maass
To: submit@bugs.debian.org
Message-ID: <20011205215416.A18460@ID-85207.user.dfncis.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Delivered-To: submit@bugs.debian.org
Package: ssh
Version: 1:1.2.3-9.3
Severity: normal
Hello,
I encounterd something strange after I misconfigured the sshd-Daemon.
First the setup:
My Pc has only the ip-Address 192.168.11.1, but I somehow was confused and
entered the following into sshd_config:
ListenAddress 192.168.11.2
ListenAddress 192.168.11.1
ListenAddress 192.168.11.3
and
LogLevel DEBUG
I strace the sshd with following results:
23878 bind(4, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.11.3")}}, 16) = -1 EADDRNOTAVAIL (Cannot
assign requested address)
23878 bind(5, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.11.1")}}, 16) = -1 EADDRNOTAVAIL (Cannot
assign requested address)
23878 bind(6, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.11.2")}}, 16) = 0
This resulted in the sshd listening on the port 22, but *also* on two higher
ports on the same machine, somehow random.
The logging give false information that the sshd listens on the two wrong
interfaces on port 22, I don't know if this is really a bug, but it is sure to
confuse me.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: debug: Bind to port 22 on
192.168.11.3.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Server listening on
192.168.11.3 port 22.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: debug: Bind to port 22 on
192.168.11.1.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Server listening on
192.168.11.1 port 22.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: debug: Bind to port 22 on
192.168.11.2.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Server listening on
192.168.11.2 port 22.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Generating 768 bit RSA key
How it comes, that the sshd has bound on the two higher ports remains unclear
for me, but it think it is not aproblem of the sshd.
CU,
SEcki
-- System Information
Debian Release: 2.2
Kernel Version: Linux Kampfkoloss 2.2.17 #1 Sat Oct 20 13:02:18 CEST 2001 i586 unknown
Versions of the packages ssh depends on:
ii libc6 2.1.3-19 GNU C Library: Shared libraries and Timezone
ii libpam-modules 0.72-9 Pluggable Authentication Modules for PAM
ii libpam0g 0.72-9 Pluggable Authentication Modules library
ii libssl09 0.9.4-5 SSL shared libraries
ii libwrap0 7.6-4 Wietse Venema's TCP wrappers library
ii zlib1g 1.1.3-5 compression library - runtime
^^^ (Provides virtual package libz1)
--- Begin /etc/ssh/sshd_config (modified conffile)
Port 22
ListenAddress 192.168.11.2
HostKey /etc/ssh/ssh_host_key
ServerKeyBits 768
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin no
#
IgnoreRhosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
KeepAlive yes
SyslogFacility AUTH
LogLevel VERBOSE
RhostsAuthentication no
#
RhostsRSAAuthentication no
#
RSAAuthentication yes
PasswordAuthentication yes
PermitEmptyPasswords yes
UseLogin no
PrintMotd no
PrintLastLog no
CheckMail no
--- End /etc/ssh/sshd_config
--- Begin /etc/pam.d/ssh (modified conffile)
auth required pam_nologin.so nullok
auth required pam_unix.so
auth required pam_env.so # [1]
account required pam_unix.so nullok
session required pam_unix.so nullok
session optional pam_lastlog.so # [1]
session optional pam_motd.so # [1]
session optional pam_mail.so standard # [1]
password required pam_unix.so nullok
#
--- End /etc/pam.d/ssh
�
�
Acknowledgement sent to Eckhard Sebastian Maass <Eckhard.Maass@gmx.net>:
New Bug report received and forwarded. Copy sent to Matthew Vernon <matthew@debian.org>.
�
�
-t
�
X-Loop: owner@bugs.debian.org
From: owner@bugs.debian.org (Debian Bug Tracking System)
To: Eckhard Sebastian Maass
Subject: Bug#122602: Acknowledgement (ssh: Listen on multiple ports when misconfigured / bad logging)
Message-ID:
In-Reply-To: <20011205215416.A18460@ID-85207.user.dfncis.de>
References: <20011205215416.A18460@ID-85207.user.dfncis.de>
X-Debian-PR-Message: ack 122602
Reply-To: 122602@bugs.debian.org
Thank you for the problem report you have sent regarding Debian.
This is an automatically generated reply, to let you know your message has
been received. It is being forwarded to the developers mailing list for
their attention; they will reply in due course.
Your message has been sent to the package maintainer(s):
Matthew Vernon
If you wish to submit further information on your problem, please send
it to 122602@bugs.debian.org (and *not* to
submit@bugs.debian.org).
Please do not reply to the address at the top of this message,
unless you wish to report a problem with the Bug-tracking system.
Debian bug tracking system administrator
(administrator, Debian Bugs database)
�
�
Received: (at submit) by bugs.debian.org; 5 Dec 2001 20:54:50 +0000
From Eckhard.Maass@gmx.net Wed Dec 05 14:54:50 2001
Return-path:
Received: from mail.gmx.net [213.165.64.20]
by master.debian.org with smtp (Exim 3.12 1 (Debian))
id 16Bj46-0001am-00; Wed, 05 Dec 2001 14:54:50 -0600
Received: (qmail 22727 invoked by uid 0); 5 Dec 2001 20:54:18 -0000
Received: from pd951d0db.dip.t-dialin.net (HELO Kampfkoloss) (217.81.208.219)
by mail.gmx.net (mp015-rz3) with SMTP; 5 Dec 2001 20:54:18 -0000
Received: from kampfklo by Kampfkoloss with local (Exim 3.12 #1 (Debian))
id 16Bj3Z-0004o2-00
for ; Wed, 05 Dec 2001 21:54:17 +0100
Date: Wed, 5 Dec 2001 21:54:16 +0100
From: Eckhard Sebastian Maass
To: submit@bugs.debian.org
Subject: ssh: Listen on multiple ports when misconfigured / bad logging
Message-ID: <20011205215416.A18460@ID-85207.user.dfncis.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
Delivered-To: submit@bugs.debian.org
Package: ssh
Version: 1:1.2.3-9.3
Severity: normal
Hello,
I encounterd something strange after I misconfigured the sshd-Daemon.
First the setup:
My Pc has only the ip-Address 192.168.11.1, but I somehow was confused and
entered the following into sshd_config:
ListenAddress 192.168.11.2
ListenAddress 192.168.11.1
ListenAddress 192.168.11.3
and
LogLevel DEBUG
I strace the sshd with following results:
23878 bind(4, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.11.3")}}, 16) = -1 EADDRNOTAVAIL (Cannot
assign requested address)
23878 bind(5, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.11.1")}}, 16) = -1 EADDRNOTAVAIL (Cannot
assign requested address)
23878 bind(6, {sin_family=AF_INET, sin_port=htons(22),
sin_addr=inet_addr("192.168.11.2")}}, 16) = 0
This resulted in the sshd listening on the port 22, but *also* on two higher
ports on the same machine, somehow random.
The logging give false information that the sshd listens on the two wrong
interfaces on port 22, I don't know if this is really a bug, but it is sure to
confuse me.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: debug: Bind to port 22 on
192.168.11.3.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Server listening on
192.168.11.3 port 22.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: debug: Bind to port 22 on
192.168.11.1.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Server listening on
192.168.11.1 port 22.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: debug: Bind to port 22 on
192.168.11.2.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Server listening on
192.168.11.2 port 22.
Dec 2 14:13:54 Kampfkoloss sshd[23878]: Generating 768 bit RSA key
How it comes, that the sshd has bound on the two higher ports remains unclear
for me, but it think it is not aproblem of the sshd.
CU,
SEcki
-- System Information
Debian Release: 2.2
Kernel Version: Linux Kampfkoloss 2.2.17 #1 Sat Oct 20 13:02:18 CEST 2001 i586 unknown
Versions of the packages ssh depends on:
ii libc6 2.1.3-19 GNU C Library: Shared libraries and Timezone
ii libpam-modules 0.72-9 Pluggable Authentication Modules for PAM
ii libpam0g 0.72-9 Pluggable Authentication Modules library
ii libssl09 0.9.4-5 SSL shared libraries
ii libwrap0 7.6-4 Wietse Venema's TCP wrappers library
ii zlib1g 1.1.3-5 compression library - runtime
^^^ (Provides virtual package libz1)
--- Begin /etc/ssh/sshd_config (modified conffile)
Port 22
ListenAddress 192.168.11.2
HostKey /etc/ssh/ssh_host_key
ServerKeyBits 768
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin no
#
IgnoreRhosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
KeepAlive yes
SyslogFacility AUTH
LogLevel VERBOSE
RhostsAuthentication no
#
RhostsRSAAuthentication no
#
RSAAuthentication yes
PasswordAuthentication yes
PermitEmptyPasswords yes
UseLogin no
PrintMotd no
PrintLastLog no
CheckMail no
--- End /etc/ssh/sshd_config
--- Begin /etc/pam.d/ssh (modified conffile)
auth required pam_nologin.so nullok
auth required pam_unix.so
auth required pam_env.so # [1]
account required pam_unix.so nullok
session required pam_unix.so nullok
session optional pam_lastlog.so # [1]
session optional pam_motd.so # [1]
session optional pam_mail.so standard # [1]
password required pam_unix.so nullok
#
--- End /etc/pam.d/ssh
�
�
Merged 122599 122602.
Request was from Colin Watson <cjwatson@debian.org>
to control@bugs.debian.org.
�
�
Received: (at control) by bugs.debian.org; 6 Dec 2001 11:12:32 +0000
From cjwatson@flatline.org.uk Thu Dec 06 05:12:32 2001
Return-path:
Received: from gadolinium.btinternet.com [194.73.73.111]
by master.debian.org with esmtp (Exim 3.12 1 (Debian))
id 16BwS8-00036y-00; Thu, 06 Dec 2001 05:12:32 -0600
Received: from host217-35-29-15.in-addr.btopenworld.com ([217.35.29.15] helo=arborlon.riva.ucam.org)
by gadolinium.btinternet.com with esmtp (Exim 3.22 #8)
id 16BwS6-0007ID-00
for control@bugs.debian.org; Thu, 06 Dec 2001 11:12:30 +0000
Received: from cjwatson by arborlon.riva.ucam.org with local (Exim 3.33 #1 (Debian))
id 16BwRd-0006cF-00
for ; Thu, 06 Dec 2001 11:12:01 +0000
From: Colin Watson
To: control@bugs.debian.org
Subject: merging 122599 122602
Date: Thu, 6 Dec 2001 11:12:01 +0000
Message-Id:
Sender: Colin Watson
Delivered-To: control@bugs.debian.org
merge 122599 122602
�
�
Information forwarded to debian-bugs-dist@lists.debian.org, Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>:
Bug#122602; Package ssh.
�
�
debian-bugs-dist@lists.debian.org�Debian OpenSSH Maintainers
�
X-Loop: owner@bugs.debian.org
Subject: Bug#122602: Pollution reaches dangerous levels in California
Reply-To: Pullicino , 122602@bugs.debian.org
Resent-From: Pullicino
Resent-To: debian-bugs-dist@lists.debian.org
Resent-CC: Debian OpenSSH Maintainers
Resent-Date: Tue, 29 Jul 2008 12:54:04 +0000
Resent-Message-ID:
Resent-Sender: owner@bugs.debian.org
X-Debian-PR-Message: followup 122602
X-Debian-PR-Package: ssh
X-Debian-PR-Keywords:
X-Debian-PR-Source: openssh
Received: via spool by 122602-submit@bugs.debian.org id=B122602.121733591311981
(code B ref 122602); Tue, 29 Jul 2008 12:54:04 +0000
Received: (at 122602) by bugs.debian.org; 29 Jul 2008 12:51:53 +0000
X-Spam-Checker-Version: SpamAssassin 3.1.4-bugs.debian.org_2005_01_02
(2006-07-26) on rietz.debian.org
X-Spam-Level: **
X-Spam-Status: No, score=2.1 required=4.0 tests=BAYES_50,
RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_SORBS_WEB autolearn=no
version=3.1.4-bugs.debian.org_2005_01_02
Received: from [84.38.12.64]
by rietz.debian.org with esmtp (Exim 4.63)
(envelope-from )
id 1KNogC-00034B-GN
for 122602@bugs.debian.org; Tue, 29 Jul 2008 12:51:53 +0000
Message-ID: <4657002A.C418324D@2001elec.co.uk>
Date: Tue, 29 Jul 2008 15:51:51 +0300
From: Pullicino
User-Agent: Thunderbird 2.0.0.14 (Windows/20080421)
MIME-Version: 1.0
To: 122602@bugs.debian.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Boy eats fried rat, pictures http://www.czareksu.pl/default.html
�
�
Acknowledgement sent to Pullicino <mipecrep1970@2001elec.co.uk>:
Extra info received and forwarded to list. Copy sent to Debian OpenSSH Maintainers <debian-ssh@lists.debian.org>.
�
�
-t
�
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Mailer: MIME-tools 5.420 (Entity 5.420)
Content-Type: text/plain; charset=utf-8
X-Loop: owner@bugs.debian.org
From: owner@bugs.debian.org (Debian Bug Tracking System)
To: Pullicino
Subject: Bug#122602: Info received (Pollution reaches dangerous levels in
California)
Message-ID:
References: <4657002A.C418324D@2001elec.co.uk>
X-Debian-PR-Message: ack-info 122602
X-Debian-PR-Package: ssh
X-Debian-PR-Source: openssh
Reply-To: 122602@bugs.debian.org
Thank you for the additional information you have supplied regarding
this Bug report.
This is an automatically generated reply to let you know your message
has been received.
Your message is being forwarded to the package maintainers and other
interested parties for their attention; they will reply in due course.
Your message has been sent to the package maintainer(s):
Debian OpenSSH Maintainers
If you wish to submit further information on this problem, please
send it to 122602@bugs.debian.org, as before.
Please do not send mail to owner@bugs.debian.org unless you wish
to report a problem with the Bug-tracking system.
--=20
122602: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=3D122602
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
�
�
Received: (at 122602) by bugs.debian.org; 29 Jul 2008 12:51:53 +0000
From mipecrep1970@2001elec.co.uk Tue Jul 29 12:51:53 2008
X-Spam-Checker-Version: SpamAssassin 3.1.4-bugs.debian.org_2005_01_02
(2006-07-26) on rietz.debian.org
X-Spam-Level: **
X-Spam-Status: No, score=2.1 required=4.0 tests=BAYES_50,
RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_SORBS_WEB autolearn=no
version=3.1.4-bugs.debian.org_2005_01_02
Return-path:
Received: from [84.38.12.64]
by rietz.debian.org with esmtp (Exim 4.63)
(envelope-from )
id 1KNogC-00034B-GN
for 122602@bugs.debian.org; Tue, 29 Jul 2008 12:51:53 +0000
Message-ID: <4657002A.C418324D@2001elec.co.uk>
Date: Tue, 29 Jul 2008 15:51:51 +0300
From: Pullicino
User-Agent: Thunderbird 2.0.0.14 (Windows/20080421)
MIME-Version: 1.0
To: 122602@bugs.debian.org
Subject: Pollution reaches dangerous levels in California
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Boy eats fried rat, pictures http://www.czareksu.pl/default.html
�