OT - SSHD

2007-11-20 Thread yance 
Hi All,

Not specifically about OpenBSD, it is SSHD.

What causes sshd not to respond? Attached is sshd -v -v.

I tried to connect to the box remotely, it seems like sshd is asleep somehow.


Kind regards,


Yance
ssh -v -v -l yance 192.168.1.3
OpenSSH_3.8.1p1 FreeBSD-20040419, OpenSSL 0.9.7e 25 Oct 2004
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to 192.168.1.3 [192.168.1.3] port 22.
debug1: Connection established.
debug1: identity file /home/yance/.ssh/identity type -1
debug1: identity file /home/yance/.ssh/id_rsa type -1
debug1: identity file /home/yance/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.5p1 
FreeBSD-20030924
debug1: match: OpenSSH_3.5p1 FreeBSD-20030924 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.8.1p1 FreeBSD-20040419
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: 
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-dss,ssh-rsa
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,[EMAIL
 PROTECTED],aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,[EMAIL
 PROTECTED],aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[EMAIL 
PROTECTED],hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[EMAIL 
PROTECTED],hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit: 
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-dss
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,[EMAIL
 PROTECTED]
debug2: kex_parse_kexinit: 
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,[EMAIL
 PROTECTED]
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[EMAIL 
PROTECTED],hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,[EMAIL 
PROTECTED],hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug2: dh_gen_key: priv key bits set: 125/256
debug2: bits set: 517/1024
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '192.168.1.3' is known and matches the DSA host key.
debug1: Found key in /home/yance/.ssh/known_hosts:10
debug2: bits set: 537/1024
debug1: ssh_dss_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: /home/yance/.ssh/identity (0x0)
debug2: key: /home/yance/.ssh/id_rsa (0x0)
debug2: key: /home/yance/.ssh/id_dsa (0x0)

pf and two ADSL links

2005-12-18 Thread yance 
Hi All,

Is merging two ADSL connections (from two different ISPs) into one OpenBSD
router to serve local LAN a possible thing to do?

Is pf load balancing the answer?

Is this what we call load sharing or load balancing? I am still not clear
if load sharing or load balancing is the correct term for what I am trying
to do.

Thanks heaps for any advice.

Re: pf and two ADSL links

2005-12-19 Thread yance 
Hi Huzeyfe,

Is the solutions really that "simple"? Any pointers as to where I can read
more about what works or what does not work in this scenario?

I read somewhere that true load balancing can only work if the two ADSL
connections end up at one ISP. Are your two links coming from two
different ISPs?

I am not really knowledgeable in this matter (load balancing or load
sharing), so please let me know if there are any solid articles somewhere.
I have googled this topic, but there is not even a handful discussion
about this topic.

How do we know if it does work as a load balancer? How do we test it?
Would download/upload become faster? Would the second link become a
hot-swappable backup?

Thanks very much for your reply.

Yance

> Hi,
> yes you need "Load Balance Outgoing Traffic" section in
> http://www.openbsd.com/faq/pf/pools.html . I use two ADSL connection
> with OpenBSD PF for employers and managers..
>
> 2005/12/19, [EMAIL PROTECTED] <[EMAIL PROTECTED]>:
>> Hi All,
>>
>> Is merging two ADSL connections (from two different ISPs) into one
>> OpenBSD
>> router to serve local LAN a possible thing to do?
>>
>> Is pf load balancing the answer?
>>
>> Is this what we call load sharing or load balancing? I am still not
>> clear
>> if load sharing or load balancing is the correct term for what I am
>> trying
>> to do.
>>
>> Thanks heaps for any advice.
>>
>>
>
>
> --
> Huzeyfe VNAL
> ---
> First Turkish Qmail book is out! Go check it.
> Duydunuz mu! Turkiye'nin ilk Qmail kitabi cikti.
> http://www.acikakademi.com/catalog/qmail/

OpenBSD 3.8 and slapd 2.0.27

2005-12-20 Thread yance 
Hi all,

I am learning to install and configure slapd on OpenBSD 3.8. Followed the
installation howto
(http://www.openbsdsupport.org/qmail-ldap-OpenBSD.html#2.0)
but here is what I get when I run slapd -d -1


line 10 (include/etc/openldap/schema/krb5-kdc.schema)
could not open config file "/etc/openldap/schema/krb5-kdc.schema": No such
file or directory (2)
slapd shutdown: freeing system resources.
slapd stopped.

Hmm, apparently "krb5-kdc.schema" is notpresent in my system.

How can this be? What should I install? Any pointers?


Thanks,


Yance