SSH problem Host key authentication failure

From: Nitin (nitinmehta_at_kappa.net.in)
Date: 08/11/04

  • Next message: Michael Schwendt: "Re: sound card" 
    To: "General Red Hat Linux discussion list" <redhat-list@redhat.com>
Date: Wed, 11 Aug 2004 16:38:30 +0530

    Hi,

    Since I installed 1 of my server afresh, I'm getting this problem while trying to SSH to the remote machine from within a script. Same script was working fine earlier. I can SSH from the prompt but from within the script it gives this error:

    Host key authentication failure

    if I use -vvv with SSH comand (for debug essages), the output is:

    OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
    debug1: Reading configuration data /etc/ssh/ssh_config
    debug1: Applying options for *
    debug1: Rhosts Authentication disabled, originating port will not be trusted.
    debug1: restore_uid
    debug1: ssh_connect: getuid 48 geteuid 0 anon 1
    debug1: Connecting to HOST [IP] port 22.
    debug1: temporarily_use_uid: 48/48 (e=0)
    debug1: restore_uid
    debug1: temporarily_use_uid: 48/48 (e=0)
    debug1: restore_uid
    debug1: Connection established.
    debug1: read PEM private key done: type DSA
    debug1: read PEM private key done: type RSA
    debug1: identity file /var/www/.ssh/identity type -1
    debug1: identity file /var/www/.ssh/id_rsa type -1
    debug1: identity file /var/www/.ssh/id_dsa type -1
    debug1: Remote protocol version 1.99, remote software version OpenSSH_2.9p2
    debug1: match: OpenSSH_2.9p2 pat OpenSSH*
    Enabling compatibility mode for protocol 2.0
    debug1: Local version string SSH-2.0-OpenSSH_3.1p1
    debug1: SSH2_MSG_KEXINIT sent
    debug1: SSH2_MSG_KEXINIT received
    debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
    debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
    debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc
    debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc
    debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    debug2: kex_parse_kexinit: none
    debug2: kex_parse_kexinit: none
    debug2: kex_parse_kexinit:
    debug2: kex_parse_kexinit:
    debug2: kex_parse_kexinit: first_kex_follows 0
    debug2: kex_parse_kexinit: reserved 0
    debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
    debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
    debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,rijndael-cbc@lysator.liu.se
    debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,rijndael-cbc@lysator.liu.se
    debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
    debug2: kex_parse_kexinit: none,zlib
    debug2: kex_parse_kexinit: none,zlib
    debug2: kex_parse_kexinit:
    debug2: kex_parse_kexinit:
    debug2: kex_parse_kexinit: first_kex_follows 0
    debug2: kex_parse_kexinit: reserved 0
    debug2: mac_init: found hmac-md5
    debug1: kex: server->client aes128-cbc hmac-md5 none
    debug2: mac_init: found hmac-md5
    debug1: kex: client->server aes128-cbc hmac-md5 none
    debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
    debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
    debug1: dh_gen_key: priv key bits set: 131/256
    debug1: bits set: 990/2049
    debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
    debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
    debug3: check_host_in_hostfile: filename /var/www/.ssh/known_hosts
    debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
    debug3: check_host_in_hostfile: filename /var/www/.ssh/known_hosts
    debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
    Host key verification failed.
    debug1: Calling cleanup 0x8063510(0x0)

    Any suggestions....

    Thanks in advance
    Nitin 

    -- 
redhat-list mailing list
unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
  • Next message: Michael Schwendt: "Re: sound card"

    Relevant Pages

    • Problem with some user autentification error on sshd
      ... debug1: Reading configuration data /etc/ssh/ssh_config ... debug2: kex_parse_kexinit: none,zlib ... debug3: check_host_in_hostfile: match line 3 ... debug1: Next authentication method: keyboard-interactive ...
      (SSH)
    • Re: Problem: passwordless SSH-login with Kerberos doesnt work
      ... I can do Kerberos password authentication now and that's already a huge step forward, but single signon is what I want. ... debug1: sshd version OpenSSH_5.1p1 Debian-5 ... debug2: fd 3 setting O_NONBLOCK ... debug3: ...
      (comp.protocols.kerberos)
    • Pls help: slow ssh command
      ... from remote clients take long to finish, ... debug1: Connecting to daisy port 22. ... debug2: fd 3 setting O_NONBLOCK ... debug2: channel 0: request env confirm 0 ...
      (comp.security.ssh)
    • Re: X11 tuneling: a hard to fix problem
      ... debug1: Connecting to remoteserver port 22. ... Remote protocol version 1.99, ... debug2: fd 3 setting O_NONBLOCK ... debug2: channel 0: request pty-req confirm 0 ...
      (SSH)
    • Re: ssh xterm -> HPUX fails
      ... debug1: read PEM private key done: type RSA ... debug3: preauth child monitor started ... debug2: monitor_read: 0 used once, ... debug2: channel 0: sent ext data 106 ...
      (comp.security.ssh)