• Support
  • Articles
  • Resources
  • Products

unexpected SSh(2) Message

Moderator: boris

21 postsPage 1 of 1

trankilou
by trankilou » Thu Mar 24, 2005 11:37 am
Hi,

Like another personn on this forum, i can login in telnet but not with SSH2 on my servers witch run under Linux/redhat.

It's works with putty and teraterm 3.10 but with your (wonderful^^ and last) version , i got the message :

unexpected message (100) on stage 6.

Do you think you can help me ?
trankilou
by trankilou » Thu Mar 24, 2005 11:45 am
trankilou wrote:Hi,

Like another personn on this forum, i can login in telnet but not with SSH2 on my servers witch run under Linux/redhat.

It's works with putty and teraterm 3.10 but with your (wonderful^^ and last) version , i got the message :

unexpected message (100) on stage 6.

Do you think you can help me ?


Sorry i made a mistake, the problem is not with Linux/redhat but with Netscreen device.

Sorry i was tired ^^

Thanks for your answer
trankilou
by trankilou » Thu Mar 24, 2005 2:08 pm
Can you tell me how to turn on the TTSSH.log to help you debugging ?

 

Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Thu Mar 24, 2005 2:22 pm
Hi,

You write 'LogLevel=100' entry at TTSSH section in teraterm.ini to enabling TTSSH logging.

Example:

[TTSSH]
Enabled=1
Compression=0
DefaultUserName=
DefaultForwarding=
CipherOrder=873026
KnownHostsFiles=ssh_known_hosts
DefaultRhostsLocalUserName=
DefaultRhostsHostPrivateKeyFile=
DefaultRSAPrivateKeyFile=
DefaultAuthMethod=3
LogLevel=100 *** here!! ***
WriteBufferSize=2097152
LocalForwardingIdentityCheck=1
ProtocolVersion=2
HeartBeat=60
KeyboardInteractive=0
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
trankilou
by trankilou » Thu Mar 24, 2005 2:28 pm
Hi,

Here the log i get when i try to connect:

Initiating SSH session at Thu Mar 24 15:28:15 2005
Received server prologue string: SSH-2.0-NetScreen
Server reports supported authentication method mask = 44
Entering secure mode
Unexpected SSH2 message(100) on current stage(6)
Terminating SSH session...

Thanks a lot for your help

trankilou

 

Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Thu Mar 24, 2005 3:10 pm
Hi,

Thank you for retrieving TTSSH log. Now I investigate the problem.
Please wait a moment.
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
trankilou
by trankilou » Thu Mar 24, 2005 3:22 pm
Hi Yutaka,

Thanks 1 thousands time for helping me,

I'm waiting for your answer.


regards,


Julien

 

Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Thu Mar 24, 2005 3:33 pm
Hi,

You are asked to retriving SSH server log files to investigating this problem. Only TTSSH log file is lack for investigation. I am sorry.

And also ... what is 'NetScreen'?
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
trankilou
by trankilou » Thu Mar 24, 2005 4:06 pm
yutaka,

Netscreen is a marquee of professionnal firewall made by Juniper now.

NS208/NS50 is a model of firewall.

In fact the firewall NS208 I use has its own ssh server. It's work greats with Putty, secure CRT and Teraterm 3.13 (but no macro autologin is possible or ?)

Netscreen is very very famous as firewall in professionnal environnment.

I work with many firewall (Nokio/Firewall1, Lucent Brick, Cisco PIX, Linux/netfilter,etc...), Netscreen is for me , one of the best or maybe the best.
I forgot to tell you i use the last version 4.13pr4

Now I don't know what other information I can send you to solve the problem, maybe dump of ethereal ?

Here the log in ascii :

SSH-2.0-NetScreen

SSH-2.0-TTSSH/2.11 Win32
....
......< .}.UPk.u.....diffie-hellman-group1-sha1....ssh-dss....3des-cbc....3des-cbc....hmac-sha1....hmac-sha1....none....none......................................I.A.K.....Ydiffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1....ssh-rsa,ssh-dss....3des-cbc,aes128-cbc....3des-cbc,aes128-cbc....hmac-sha1,hmac-md5....hmac-sha1,hmac-md5....none....none..............
A&~$.................bYT...X...)..}.KJ$.%.....R28.M...C..."....a........_.M..cg.8.
}`..eJ.......D| .h-......k....?..L..-y../.8j.)..<.....m.y.5..3u...!2.....|..........ssh-dss.......... Y.E&......R$......^....|Zx..B.X8.....{I...M..u.J..._.....?"}.[...../[........&?b.#C..............).C...).... .h%....X.$................['.,. ....V.......)..wg.....r.y..nmw..9..l..z.<.z#..-.....S=.Z.v.J..W...:f..I*..}............\TQ..gS8..>....}OH].Tb..L...(|..:0;}....=....A_..y.(......2...&.N...dj.8.4@JZ..0.6..K.
...Y.....O.Fr.A2..}.."V(R.D.*Eo(7,H.Z:.d.Nm.p...\.${..E.?..dm...(b.......F.R......(N..r..w.R.M~.].......Z..N..V..u..&,...#..O...y.#.......(./#~..9..9......2...p.e?.c.......+|;..].vj..Hi..C............W.k.p.........'1..F....}Z...l....7....ssh-dss...(.~.........k......X.A.k~....#B...".....P........
..X=W.~..Gv....
............Zn).c...8H..h..F&JB}......NG....vU....L..../..^..z.....*...3.R......c....".
..e..I......5.?^2....|tDW...D....2.A..\....21.g..It..."}qV.Q...9....+.....n...&.....".c.@^.n...]....%f......P..}^.(n..N%HJ....&7%O^F@....A...W'.k..1....Tyy.H...p....Q.n....._r..+}.^.%F.E..T..Z.rjk..y0.K....A.......H@vst.s..p...SVs.n..NX2y6..t..?.....CDM......*Z_.m2.....4qj......c.4X....V.i.z.G.......m.."....9.v./....`K..2.%.r...].....T.
..bv....t...-......Q....`......;^..?.S....d^......../e6.V.3.E...{.@nP...KOc...?!k.``x.M.s'LuN..W..Ro.t..


Need more information ?
trankilou
by trankilou » Thu Mar 24, 2005 4:17 pm
When i take etherreal to compore between teraterm and putty, the only difference i notice before it crash is that my server (firewall) send a "TCP-OUT-OF-Order".

Is there another way to help you better ?

 

Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Fri Mar 25, 2005 10:42 am
Hi,

Please accept my apologies for my bad explanation.
The log file I want is not caputured packet data but SSH daemon log.
For instance Linux it is /var/log/message and /var/log/secure.
Please send 'NetScreen' sshd log to me.
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
trankilou
by trankilou » Fri Mar 25, 2005 3:19 pm
Ok, i understand exactly what you want but I'm not sure I can find it. I'm looking for it since 1 hour and I can't find it.

As it's a harwdare device (an appliance in fact) and not a Unix Server, the ssh server is integrated and I don't have the flexibility of a "Unix" server.

A friend tell me that the Netscreen' ssh server is a "modified" version.

I keep going on looking for the log and if I can find it, i will post it.

For the moment I have just this log,

When i try to connect with the sshautologin script :

2005-03-25 16:17:48 warn SSH: Password authentication successful for admin user 'admin' at host 192.168.6.98
2005-03-25 16:17:48 warn SSH: Admin 'admin' at host 192.168.6.98 attempted to be authenticated with no authentication methods enabled.
2005-03-25 16:17:48 warn SSH: Admin user admin at host 192.168.6.98 requested unsupported authentication method keyboard-interactive



When i try to connect directly :
the same

 

Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Fri Mar 25, 2005 4:15 pm
Hi,

I suggest that you disable SSH2 keyboard-interactive method. How to
disable it method you write 'KeyboardInteractive=0' of TTSSH section in
teraterm.ini.

Example:

[TTSSH]
; SSH2 keyboard-interactive method (1=enabled 0=disabled)
KeyboardInteractive=0
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
trankilou
by trankilou » Fri Mar 25, 2005 4:28 pm
Ok, thanks for your advice, I did it but it's change nothing execpt in the log, it's just written:

SSH: Password authentication successful for admin user 'admin' at host 192.168.6.124

but it's still crash with same error (message(100) stage 6)

Do you have an idea ?

 

Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Sun Mar 27, 2005 4:47 am
Hi,

Thank you for your testing without keyboard-interactive mode.
I added new TTSSH logging in the following TeraTerm:
You are asked to retrieve logging data(TTSSH.LOG) by using this TeraTerm.

http://sleep.mat-yan.jp/~yutaka/windows ... 13pre5.zip
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
Guest 2
by Guest 2 » Sun Mar 27, 2005 3:59 pm
I am the other person who has NetScreen problems too. With 4.13pre5, here is the TTSSH.log:

Initiating SSH session at Sun Mar 27 10:57:22 2005
Received server prologue string: SSH-2.0-NetScreen
SSH2_MSG_KEXINIT was sent
SSH2_MSG_KEXINIT is receiving
SSH2_MSG_KEXDH_INIT was sent
SSH2_MSG_NEWKEYS is received(DH key generation is completed).
Server reports supported authentication method mask = 44
Entering secure mode
SSH2_MSG_SERVICE_REQUEST was sent.
SSH2_MSG_SERVICE_ACCEPT is received.
SSH2_MSG_USERAUTH_REQUEST was sent(method 3)
User authentication is successful and SSH heartbeat thread is starting.
SSH2_MSG_CHANNEL_OPEN was sent.
SSH2_MSG_CHANNEL_REQUEST was sent at handle_SSH2_open_confirm().
Unexpected SSH2 message(100) on current stage(6)
Terminating SSH session...

Hope this helps with the debugging. Thank you.
Yutaka Hirata
TeraTerm Developer

Posts:
609
Joined: Wed Jan 12, 2005 2:35 pm
by Yutaka Hirata » Mon Mar 28, 2005 1:57 pm
Hello,

Thank you for your logging.
I change SSH2_MSG_CHANNEL_REQUEST behavior in the following archive:
How in this?

http://sleep.mat-yan.jp/~yutaka/windows ... 13pre6.zip
Best regards, Yutaka Hirata
(yutakakn at gmail.com)
http://hp.vector.co.jp/authors/VA013320/
Guest 2
by Guest 2 » Tue Mar 29, 2005 3:46 am
With 4.13pre6, I was able to log in to the NetScreen device:

Initiating SSH session at Mon Mar 28 22:42:17 2005
Received server prologue string: SSH-2.0-NetScreen
SSH2_MSG_KEXINIT was sent
SSH2_MSG_KEXINIT is receiving
SSH2_MSG_KEXDH_INIT was sent
SSH2_MSG_NEWKEYS is received(DH key generation is completed).
Server reports supported authentication method mask = 44
Entering secure mode
SSH2_MSG_SERVICE_REQUEST was sent.
SSH2_MSG_SERVICE_ACCEPT is received.
SSH2_MSG_USERAUTH_REQUEST was sent(method 3)
User authentication is successful and SSH heartbeat thread is starting.
SSH2_MSG_CHANNEL_OPEN was sent.
SSH2_MSG_CHANNEL_REQUEST was sent at handle_SSH2_open_confirm().
SSH2_MSG_CHANNEL_SUCCESS is received(nego_status 1).
SSH2_MSG_CHANNEL_REQUEST was sent at handle_SSH2_channel_success().
SSH2_MSG_CHANNEL_SUCCESS is received(nego_status 2).
Terminating SSH session...

Thank you very much! Now I can finally use TeraTerm again for everything. We should make sure that "trankilou" is also having success with the new binary, but I am guessing that everything should work just fine.
trankilou
by trankilou » Tue Mar 29, 2005 8:23 am
Hey it works !!

Congratulation and thanks you very much yutaka !

So thanks you "guest 2" for your help.

How do you make to get a so detailled log ?

However great work !!

 

boris
Moderator, LogMeTT and TTLEditor developer

Posts:
1618
Joined: Sat Jan 08, 2005 2:52 pm
by boris » Tue Mar 29, 2005 1:01 pm
Hi Yutaka,

This is good news! :) You keep doing great job! :D Thanks!

In case you will be releasing TereTerm 4.13 please wait for couple of hours from the time I am writing this post since I will be also releasing LogMeTT 2.4.2. Then you will be able to incude the latest version of LogMeT into the package.
Thanks.
Best regards,
Boris

 

boris
Moderator, LogMeTT and TTLEditor developer

Posts:
1618
Joined: Sat Jan 08, 2005 2:52 pm
by boris » Tue Mar 29, 2005 2:41 pm
LogMeTT 2.4.2 has been released http://logmett.com/forum/viewtopic.php?t=77
Thanks.
Best regards,
Boris
Display posts from previous:
Sort by:

21 postsPage 1 of 1

Users browsing this forum: No registered users
cron