 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
Mac Forum / General / Networking / November 2004weird ssh problem under OS X 10.3.6
Hi all, I've recently experienced an unusual problem with ssh (openssh) on both of my OS X machines (G4 iMac and G4 PowerBook). I recently applied an Apple Security Update and also an upgrade to openssh by way of fink. The problem occurs whether I use the fink version or the Apple supplied version, so my best guess is that Apple may have changed some config files (used by both) that may affect my particular setup. Anyway, what happens is that when I try to initiate an ssh connection between my machines, or even from one machine to itself, I get the following message (for example): % ssh localhost ssh_exchange_identification: Connection closed by remote host If I examine /var/log/system.log, I see the following entries: Nov 26 11:45:34 iMac xinetd[305]: START: ssh pid=24267 from=::1 Nov 26 11:45:34 iMac sshd[24267]: fatal: Missing privilege separation directory: /var/empty OK, that looks suggestive. So, I issue this command: % sudo mkdir /var/empty After this, I can use ssh, but I don't know if this is the best solution, or if the correct permissions are set for /var/empty. In addition, now I get the following sorts of messages in the system.log when I log out: Nov 26 11:51:05 iMac sshd[28308]: error: BSM audit: solaris_audit_record failed to write "sshd logout " record: Operation not supported So, any thoughts why this happened (to both of my Macs), whether this is the best solution, if there are any additional problems, anything else I should do, etc? Thanks, Mike  SignatureMike Zulauf mazulauf@met.utah.edu * Mike Zulauf <mazulauf@met.utah.edu>, 2004-11-27 17:09 +0100: [...] > I've recently experienced an unusual problem with ssh (openssh) [...] > if the correct permissions are set for /var/empty. drwxr-xr-x 3 root sys 102 19 Nov 16:46 empty > Nov 26 11:51:05 iMac sshd[28308]: error: BSM audit: solaris_audit_record > failed > to write "sshd logout " record: Operation not supported Sorry, no idea. -Andre > * Mike Zulauf <mazulauf@met.utah.edu>, 2004-11-27 17:09 +0100: > [...] [quoted text clipped - 3 lines] > > drwxr-xr-x 3 root sys 102 19 Nov 16:46 empty Thanks. That's actually what I had (though mine is set as root:wheel). Now why I didn't have this directory, I have no idea. . . Mike SignatureMike Zulauf mazulauf@met.utah.edu Mike Zulauf <mazulauf@met.utah.edu> said: > I've recently experienced an unusual problem with ssh (openssh) on both > of my OS X machines (G4 iMac and G4 PowerBook). I recently applied an [quoted text clipped - 16 lines] > directory: > /var/empty What version of the fink openssh pkg are you using? In the past week or so, 3.9p1-1 was added, and then updated to -2. And the -1->-2 update appears to change (fink's) PRIVSEP_PATH. dan SignatureDaniel Macks dmacks@netspace.org http://www.netspace.org/~dmacks > Mike Zulauf <mazulauf@met.utah.edu> said: > > [quoted text clipped - 8 lines] > or so, 3.9p1-1 was added, and then updated to -2. And the -1->-2 > update appears to change (fink's) PRIVSEP_PATH. My fink version is: OpenSSH_3.9p1, OpenSSL 0.9.7d 17 Mar 2004 The odd thing is that I got the same error when I attempted to use Apple's ssh as well, and that version is: OpenSSH_3.6.1p1+CAN-2004-0175, SSH protocols 1.5/2.0, OpenSSL 0x0090702f In general, I don't use Apple's version. In any case, I think I've got /var/empty set up correctly now. I'm mainly curious how this happened - whether my config files changed somehow, or it was the Apple update, or something else. Thanks, Mike SignatureMike Zulauf mazulauf@met.utah.edu > In general, I don't use Apple's version. In any case, I think I've got > /var/empty set up correctly now. I'm mainly curious how this happened - > whether my config files changed somehow, or it was the Apple update, or > something else. If /var/empty was missing, I think you're into the "something else" category. This directory is part of the 10.3 "base system" package, and should have been there. SignatureTom "Tom" Harrington Macaroni, Automated System Maintenance for Mac OS X. Version 2.0: Delocalize, Repair Permissions, lots more. See http://www.atomicbird.com/ > > In general, I don't use Apple's version. In any case, I think I've got > > /var/empty set up correctly now. I'm mainly curious how this happened - [quoted text clipped - 4 lines] > category. This directory is part of the 10.3 "base system" package, and > should have been there. Very weird. I'm guessing something went "wrong" with either my fink update or the Apple one (both of which updated ssh). On both machines. And I haven't heard of anything similar happening to anybody else. Nothing else I can think of makes any sense. Oh well, just an unsolved mystery, I guess. . . Mike SignatureMike Zulauf mazulauf@met.utah.edu |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.