SSH broken on some RH Linux 7.2 NIS+ clients

Kristen J. McFadden kjm31 at genome5.cpmc.columbia.edu
Fri Oct 4 23:23:35 EST 2002 

Hi all,
 
On all of my newly installed RH 7.2 fully updated with all available
patches NIS+ clients, I get a weird problem. From the NIS+ linux client,
I can ssh to machines in our NIS domain (we have 2 domains here for 2
different groups, one is NIS based the other is NIS+), but I cannot ssh
to machines in the NIS+ domain (including ssh'ing to the machine that
I'm on).  
 
Strangely enough, if I ssh FROM the Solaris NIS+ client (or the linux
NIS client) TO the linux NIS+ client, everything works fine.
 
In the below printout,  "nisplusclient1" is a sparc running Solaris 8.
nisplusclient2 is my RH Linux 7.2 client, and "adredhat" is a Linux NIS
client.
 
Any ideas? 
 
 
Example:
 
$ hostname
nisplusclient2
$ ssh -v nisplusclient1
OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 1144 geteuid 0 anon 1
ssh: nisplusclient1: System error
$ ssh -v nisplusclient2
OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 1144 geteuid 0 anon 1
ssh: nisplusclient2: System error
$ ssh -v adredhat
OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be
trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 1144 geteuid 0 anon 1
debug1: Connecting to adredhat [x.x.x.xx] port 22.
debug1: temporarily_use_uid: 1144/110 (e=0)
debug1: restore_uid
debug1: temporarily_use_uid: 1144/110 (e=0)
debug1: restore_uid
debug1: Connection established.
debug1: read PEM private key done: type DSA
debug1: read PEM private key done: type RSA
Could not create directory '/users/kjm31/.ssh'.
debug1: identity file /users/kjm31/.ssh/identity type -1
debug1: identity file /users/kjm31/.ssh/id_rsa type -1
debug1: identity file /users/kjm31/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version
OpenSSH_3.1p1
debug1: match: OpenSSH_3.1p1 pat OpenSSH*
Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.1p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: dh_gen_key: priv key bits set: 132/256
debug1: bits set: 1598/3191
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
The authenticity of host 'adredhat (x.x.x.x.x)' can't be established.
RSA key fingerprint is ()
Are you sure you want to continue connecting (yes/no)? no
Host key verification failed.
debug1: Calling cleanup 0x80634c0(0x0)
$ 
 
 
Kristen McFadden
Sr. Systems Analyst/Programmer
Columbia Genome Center
 
-------------- next part --------------
HTML attachment scrubbed and removed

More information about the linux-nisplus mailing list