From root@jaguar-2.claimlynx.com  Mon Apr 12 18:59:07 2010
Return-Path: <root@jaguar-2.claimlynx.com>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id C5F771065687
	for <FreeBSD-gnats-submit@freebsd.org>; Mon, 12 Apr 2010 18:59:07 +0000 (UTC)
	(envelope-from root@jaguar-2.claimlynx.com)
Received: from jaguar-2.claimlynx.com (jaguar-2.claimlynx.com [216.17.68.153])
	by mx1.freebsd.org (Postfix) with ESMTP id A495E8FC23
	for <FreeBSD-gnats-submit@freebsd.org>; Mon, 12 Apr 2010 18:59:07 +0000 (UTC)
Received: by jaguar-2.claimlynx.com (Postfix, from userid 0)
	id A7B8511F836; Mon, 12 Apr 2010 13:39:01 -0500 (CDT)
Message-Id: <20100412183901.A7B8511F836@jaguar-2.claimlynx.com>
Date: Mon, 12 Apr 2010 13:39:01 -0500 (CDT)
From: Eric F Crist <ecrist@secure-computing.net>
Reply-To: Eric F Crist <ecrist@secure-computing.net>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: base openssh gives an unusable terminal when using ssh to connect to a host configured for sftp only
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         145660
>Category:       bin
>Synopsis:       ssh(1): base openssh gives an unusable terminal when using ssh to connect to a host configured for sftp only
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    des
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Apr 12 19:00:10 UTC 2010
>Closed-Date:    Mon Aug 16 18:05:01 UTC 2010
>Last-Modified:  Mon Aug 16 18:05:01 UTC 2010
>Originator:     Eric F Crist
>Release:        FreeBSD 8.0-STABLE amd64
>Organization:
Secure Computing Networks
ClaimLynx, Inc
>Environment:
System: FreeBSD jaguar-2.claimlynx.com 8.0-STABLE FreeBSD 8.0-STABLE #3: Fri Apr 9 11:01:00 CDT 2010 root@jaguar-2.claimlynx.com:/usr/obj/usr/src/sys/GENERIC-CARP amd64


	
>Description:
	The the following sshd_config in place, connecting as user 'testing' to the box gives a blank/empty terminal.  Attempting to run
	any commands yields an error and the session is dropped.  In HEAD, this same scenario is handled with a message indicating the
	current system only allows sftp connections.

>How-To-Repeat:
	Protocol 2
	Subsystem sftp internal-sftp
	Match User testing
		ForceCommand internal-sftp
		X11Forwarding no
		AllowTcpForwarding no
	
	Use the above sshd_config and attempt to log in as user 'testing' via SSH, connecting as SFTP should work.
>Fix:
	This problem does not appear in HEAD.


>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-bugs->des 
Responsible-Changed-By: remko 
Responsible-Changed-When: Mon Apr 12 19:17:23 UTC 2010 
Responsible-Changed-Why:  
Reassign to Dag-Erling, the maintainer of ssh in the base system. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=145660 

From: Garrett Cooper <yanefbsd@gmail.com>
To: Eric F Crist <ecrist@secure-computing.net>
Cc: bug-followup@freebsd.org
Subject: Re: bin/145660: base openssh gives an unusable terminal when using 
	ssh to connect to a host configured for sftp only
Date: Mon, 12 Apr 2010 13:04:43 -0700

 On Mon, Apr 12, 2010 at 11:39 AM, Eric F Crist
 <ecrist@secure-computing.net> wrote:
 >
 >>Number: =A0 =A0 =A0 =A0 145660
 >>Category: =A0 =A0 =A0 bin
 >>Synopsis: =A0 =A0 =A0 base openssh gives an unusable terminal when using =
 ssh to connect to a host configured for sftp only
 >>Confidential: =A0 no
 >>Severity: =A0 =A0 =A0 non-critical
 >>Priority: =A0 =A0 =A0 low
 >>Responsible: =A0 =A0freebsd-bugs
 >>State: =A0 =A0 =A0 =A0 =A0open
 >>Quarter:
 >>Keywords:
 >>Date-Required:
 >>Class: =A0 =A0 =A0 =A0 =A0sw-bug
 >>Submitter-Id: =A0 current-users
 >>Arrival-Date: =A0 Mon Apr 12 19:00:10 UTC 2010
 >>Closed-Date:
 >>Last-Modified:
 >>Originator: =A0 =A0 Eric F Crist
 >>Release: =A0 =A0 =A0 =A0FreeBSD 8.0-STABLE amd64
 >>Organization:
 > Secure Computing Networks
 > ClaimLynx, Inc
 >>Environment:
 > System: FreeBSD jaguar-2.claimlynx.com 8.0-STABLE FreeBSD 8.0-STABLE #3: =
 Fri Apr 9 11:01:00 CDT 2010 root@jaguar-2.claimlynx.com:/usr/obj/usr/src/sy=
 s/GENERIC-CARP amd64
 >
 >
 >
 >>Description:
 > =A0 =A0 =A0 =A0The the following sshd_config in place, connecting as user=
  'testing' to the box gives a blank/empty terminal. =A0Attempting to run
 > =A0 =A0 =A0 =A0any commands yields an error and the session is dropped. =
 =A0In HEAD, this same scenario is handled with a message indicating the
 > =A0 =A0 =A0 =A0current system only allows sftp connections.
 >
 >>How-To-Repeat:
 > =A0 =A0 =A0 =A0Protocol 2
 > =A0 =A0 =A0 =A0Subsystem sftp internal-sftp
 > =A0 =A0 =A0 =A0Match User testing
 > =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0ForceCommand internal-sftp
 > =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0X11Forwarding no
 > =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AllowTcpForwarding no
 >
 > =A0 =A0 =A0 =A0Use the above sshd_config and attempt to log in as user 't=
 esting' via SSH, connecting as SFTP should work.
 >>Fix:
 > =A0 =A0 =A0 =A0This problem does not appear in HEAD.
 
     A helpful skill in the past when ssh goes south has been to check
 /var/log/messages for errors; you could also increase the LogLevel in
 sshd_config to DEBUG and see what happens; it could vary from issues
 with pam, openssh, syscons, pty allocation (login would fail as well),
 /var being full (openpty would fail), etc. Can you please reply to the
 list with a status of some of the items shown before, as well as the
 relevant entry in /etc/passwd for the testing user?
 Thanks!
 -Garrett

From: Eric F Crist <ecrist@secure-computing.net>
To: bug-followup@FreeBSD.org,
 ecrist@secure-computing.net
Cc:  
Subject: Re: bin/145660: ssh(1): base openssh gives an unusable terminal when using ssh to connect to a host configured for sftp only
Date: Fri, 16 Apr 2010 12:16:41 -0500

 --Apple-Mail-17-1073225700
 Content-Transfer-Encoding: quoted-printable
 Content-Type: text/plain;
 	charset=us-ascii
 
 There is nothing I see in the debug, but I've attached the server and =
 client logs from a connection to this email.
 
 
 --Apple-Mail-17-1073225700
 Content-Disposition: attachment;
 	filename=client.log
 Content-Type: application/octet-stream;
 	x-unix-mode=0664;
 	name="client.log"
 Content-Transfer-Encoding: 7bit
 
 penSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
 debug1: Reading configuration data /Users/ecrist/.ssh/config
 debug1: Applying options for *
 debug1: Reading configuration data /etc/ssh_config
 debug2: ssh_connect: needpriv 0
 debug1: Connecting to angola [10.0.5.105] port 22.
 debug1: Connection established.
 debug3: Not a RSA1 key file /Users/ecrist/.ssh/id_rsa.
 debug2: key_type_from_name: unknown key type '-----BEGIN'
 debug3: key_read: missing keytype
 debug2: key_type_from_name: unknown key type 'Proc-Type:'
 debug3: key_read: missing keytype
 debug2: key_type_from_name: unknown key type 'DEK-Info:'
 debug3: key_read: missing keytype
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug3: key_read: missing whitespace
 debug2: key_type_from_name: unknown key type '-----END'
 debug3: key_read: missing keytype
 debug1: identity file /Users/ecrist/.ssh/id_rsa type 1
 debug1: identity file /Users/ecrist/.ssh/id_dsa type -1
 debug1: Remote protocol version 2.0, remote software version OpenSSH_5.2p1 FreeBSD-20090522
 debug1: match: OpenSSH_5.2p1 FreeBSD-20090522 pat OpenSSH*
 debug1: Enabling compatibility mode for protocol 2.0
 debug1: Local version string SSH-2.0-OpenSSH_5.2
 debug2: fd 3 setting O_NONBLOCK
 debug1: SSH2_MSG_KEXINIT sent
 debug1: SSH2_MSG_KEXINIT received
 debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
 debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
 debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
 debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
 debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
 debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
 debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
 debug2: kex_parse_kexinit: none,zlib@openssh.com,zlib
 debug2: kex_parse_kexinit: 
 debug2: kex_parse_kexinit: 
 debug2: kex_parse_kexinit: first_kex_follows 0 
 debug2: kex_parse_kexinit: reserved 0 
 debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
 debug2: kex_parse_kexinit: ssh-rsa,ssh-dss
 debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
 debug2: kex_parse_kexinit: aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour,rijndael-cbc@lysator.liu.se
 debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
 debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
 debug2: kex_parse_kexinit: none,zlib@openssh.com
 debug2: kex_parse_kexinit: none,zlib@openssh.com
 debug2: kex_parse_kexinit: 
 debug2: kex_parse_kexinit: 
 debug2: kex_parse_kexinit: first_kex_follows 0 
 debug2: kex_parse_kexinit: reserved 0 
 debug2: mac_setup: found hmac-md5
 debug1: kex: server->client aes128-ctr hmac-md5 none
 debug2: mac_setup: found hmac-md5
 debug1: kex: client->server aes128-ctr hmac-md5 none
 debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
 debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
 debug2: dh_gen_key: priv key bits set: 133/256
 debug2: bits set: 533/1024
 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
 debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
 debug3: check_host_in_hostfile: filename /Users/ecrist/.ssh/known_hosts
 debug3: key_read: type mismatch
 debug3: check_host_in_hostfile: match line 147
 debug3: check_host_in_hostfile: filename /Users/ecrist/.ssh/known_hosts
 debug3: key_read: type mismatch
 debug3: check_host_in_hostfile: match line 147
 debug1: Host 'angola' is known and matches the RSA host key.
 debug1: Found key in /Users/ecrist/.ssh/known_hosts:147
 debug2: bits set: 510/1024
 debug1: ssh_rsa_verify: signature correct
 debug2: kex_derive_keys
 debug2: set_newkeys: mode 1
 debug1: SSH2_MSG_NEWKEYS sent
 debug1: expecting SSH2_MSG_NEWKEYS
 debug2: set_newkeys: mode 0
 debug1: SSH2_MSG_NEWKEYS received
 debug1: SSH2_MSG_SERVICE_REQUEST sent
 debug2: service_accept: ssh-userauth
 debug1: SSH2_MSG_SERVICE_ACCEPT received
 debug2: key: /Users/ecrist/.ssh/id_rsa (0x113e80)
 debug2: key: /Users/ecrist/.ssh/id_dsa (0x0)
 debug1: Authentications that can continue: publickey,keyboard-interactive
 debug3: start over, passed a different list publickey,keyboard-interactive
 debug3: preferred publickey,keyboard-interactive,password
 debug3: authmethod_lookup publickey
 debug3: remaining preferred: keyboard-interactive,password
 debug3: authmethod_is_enabled publickey
 debug1: Next authentication method: publickey
 debug1: Offering public key: /Users/ecrist/.ssh/id_rsa
 debug3: send_pubkey_test
 debug2: we sent a publickey packet, wait for reply
 debug1: Authentications that can continue: publickey,keyboard-interactive
 debug1: Trying private key: /Users/ecrist/.ssh/id_dsa
 debug3: no such identity: /Users/ecrist/.ssh/id_dsa
 debug2: we did not send a packet, disable method
 debug3: authmethod_lookup keyboard-interactive
 debug3: remaining preferred: password
 debug3: authmethod_is_enabled keyboard-interactive
 debug1: Next authentication method: keyboard-interactive
 debug2: userauth_kbdint
 debug2: we sent a keyboard-interactive packet, wait for reply
 debug2: input_userauth_info_req
 debug2: input_userauth_info_req: num_prompts 1
 Password: 
 debug3: packet_send2: adding 32 (len 20 padlen 12 extra_pad 64)
 debug2: input_userauth_info_req
 debug2: input_userauth_info_req: num_prompts 0
 debug3: packet_send2: adding 48 (len 10 padlen 6 extra_pad 64)
 debug1: Authentication succeeded (keyboard-interactive).
 debug1: channel 0: new [client-session]
 debug3: ssh_session2_open: channel_new: 0
 debug2: channel 0: send open
 debug1: Requesting no-more-sessions@openssh.com
 debug1: Entering interactive session.
 debug2: callback start
 debug1: Requesting authentication agent forwarding.
 debug2: channel 0: request auth-agent-req@openssh.com confirm 0
 debug2: client_session2_setup: id 0
 debug2: channel 0: request pty-req confirm 1
 debug2: channel 0: request shell confirm 1
 debug2: fd 3 setting TCP_NODELAY
 debug2: callback done
 debug2: channel 0: open confirm rwindow 0 rmax 32768
 debug2: channel_input_status_confirm: type 99 id 0
 debug2: PTY allocation request accepted on channel 0
 debug2: channel 0: rcvd adjust 2097152
 debug2: channel_input_status_confirm: type 99 id 0
 debug2: shell request accepted on channel 0
 
  
  debug2: channel 0: rcvd eof
 debug2: channel 0: output open -> drain
 debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
 debug1: client_input_channel_req: channel 0 rtype eow@openssh.com reply 0
 debug2: channel 0: rcvd eow
 debug2: channel 0: close_read
 debug2: channel 0: input open -> closed
 debug2: channel 0: rcvd close
 debug3: channel 0: will not send data after close
 
 debug3: channel 0: will not send data after close
 debug2: channel 0: obuf empty
 debug2: channel 0: close_write
 debug2: channel 0: output drain -> closed
 debug2: channel 0: almost dead
 debug2: channel 0: gc: notify user
 debug2: channel 0: gc: user detached
 debug2: channel 0: send close
 debug2: channel 0: is dead
 debug2: channel 0: garbage collecting
 debug1: channel 0: free: client-session, nchannels 1
 debug3: channel 0: status: The following connections are open:
   #0 client-session (t4 r0 i3/0 o3/0 fd -1/-1 cfd -1)
 
 debug3: channel 0: close_fds r -1 w -1 e 7 c -1
 Connection to angola closed.
 Transferred: sent 2288, received 2264 bytes, in 3.1 seconds
 Bytes per second: sent 749.7, received 741.8
 debug1: Exit status 11
 
 
 
 --Apple-Mail-17-1073225700
 Content-Disposition: attachment;
 	filename=srv.log
 Content-Type: application/octet-stream;
 	x-unix-mode=0664;
 	name="srv.log"
 Content-Transfer-Encoding: 7bit
 
 Apr 16 12:14:20 angola sshd[48888]: debug1: Bind to port 22 on 10.0.5.105.
 Apr 16 12:14:20 angola sshd[48888]: Server listening on 10.0.5.105 port 22.
 Apr 16 12:14:26 angola sshd[48888]: debug1: fd 4 clearing O_NONBLOCK
 Apr 16 12:14:26 angola sshd[48888]: debug1: Forked child 48889.
 Apr 16 12:14:26 angola sshd[48889]: debug1: rexec start in 4 out 4 newsock 4 pipe 6 sock 7
 Apr 16 12:14:26 angola sshd[48889]: debug1: inetd sockets after dupping: 3, 3
 Apr 16 12:14:26 angola sshd[48889]: debug1: res_init()
 Apr 16 12:14:26 angola sshd[48889]: Connection from 10.0.3.2 port 54543
 Apr 16 12:14:26 angola sshd[48889]: debug1: Client protocol version 2.0; client software version OpenSSH_5.2
 Apr 16 12:14:26 angola sshd[48889]: debug1: match: OpenSSH_5.2 pat OpenSSH*
 Apr 16 12:14:26 angola sshd[48889]: debug1: Enabling compatibility mode for protocol 2.0
 Apr 16 12:14:26 angola sshd[48889]: debug1: Local version string SSH-2.0-OpenSSH_5.2p1 FreeBSD-20090522
 Apr 16 12:14:26 angola sshd[48889]: debug1: user testuser matched 'User testuser' at line 7
 Apr 16 12:14:27 angola sshd[48889]: debug1: PAM: initializing for "testuser"
 Apr 16 12:14:27 angola sshd[48889]: debug1: PAM: setting PAM_RHOST to "10.0.3.2"
 Apr 16 12:14:27 angola sshd[48889]: debug1: trying public key file /home/testuser/.ssh/authorized_keys
 Apr 16 12:14:27 angola sshd[48889]: debug1: trying public key file /home/testuser/.ssh/authorized_keys2
 Apr 16 12:14:27 angola sshd[48889]: Failed publickey for testuser from 10.0.3.2 port 54543 ssh2
 Apr 16 12:14:28 angola sshd[48891]: debug1: do_pam_account: called
 Apr 16 12:14:28 angola sshd[48889]: debug1: PAM: num PAM env strings 0
 Apr 16 12:14:28 angola sshd[48889]: debug1: do_pam_account: called
 Apr 16 12:14:28 angola sshd[48889]: Accepted keyboard-interactive/pam for testuser from 10.0.3.2 port 54543 ssh2
 Apr 16 12:14:28 angola sshd[48889]: debug1: monitor_child_preauth: testuser has been authenticated by privileged process
 Apr 16 12:14:28 angola sshd[48889]: debug1: PAM: establishing credentials
 Apr 16 12:14:28 angola sshd[48889]: User child is on pid 48892
 Apr 16 12:14:28 angola sshd[48892]: debug1: PAM: establishing credentials
 Apr 16 12:14:28 angola sshd[48892]: debug1: Entering interactive session for SSH2.
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_init_dispatch_20
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_input_channel_open: ctype session rchan 0 win 1048576 max 16384
 Apr 16 12:14:28 angola sshd[48892]: debug1: input_session_request
 Apr 16 12:14:28 angola sshd[48892]: debug1: channel 0: new [server-session]
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_new: session 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_open: channel 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_open: session 0: link with channel 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_input_channel_open: confirm session
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_input_global_request: rtype no-more-sessions@openssh.com want_reply 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_input_channel_req: channel 0 request auth-agent-req@openssh.com reply 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_by_channel: session 0 channel 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_input_channel_req: session 0 req auth-agent-req@openssh.com
 Apr 16 12:14:28 angola sshd[48892]: debug1: restore_uid: (unprivileged)
 Apr 16 12:14:28 angola sshd[48892]: debug1: channel 1: new [auth socket]
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_input_channel_req: channel 0 request pty-req reply 1
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_by_channel: session 0 channel 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_input_channel_req: session 0 req pty-req
 Apr 16 12:14:28 angola sshd[48892]: debug1: Allocating pty.
 Apr 16 12:14:28 angola sshd[48889]: debug1: session_new: session 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_pty_req: session 0 alloc /dev/pts/5
 Apr 16 12:14:28 angola sshd[48892]: debug1: server_input_channel_req: channel 0 request shell reply 1
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_by_channel: session 0 channel 0
 Apr 16 12:14:28 angola sshd[48892]: debug1: session_input_channel_req: session 0 req shell
 Apr 16 12:14:28 angola sshd[48892]: debug1: Forced command (config) 'internal-sftp'
 Apr 16 12:14:28 angola sshd[48893]: debug1: Setting controlling tty using TIOCSCTTY.
 Apr 16 12:14:31 angola internal-sftp[48893]: error: bad message from 10.0.3.2 local user testuser
 Apr 16 12:14:31 angola kernel: Apr 16 12:13:03 angola sshd[48858]: error: PAM: authentication error for testuser from 10.0.3.2
 Apr 16 12:14:31 angola kernel: Apr 16 12:14:31 angola internal-sftp[48893]: error: bad message from 10.0.3.2 local user testuser
 Apr 16 12:14:31 angola sshd[48892]: debug1: Received SIGCHLD.
 Apr 16 12:14:31 angola sshd[48889]: debug1: session_by_tty: session 0 tty /dev/pts/5
 Apr 16 12:14:31 angola sshd[48892]: debug1: session_by_pid: pid 48893
 Apr 16 12:14:31 angola sshd[48889]: debug1: session_pty_cleanup: session 0 release /dev/pts/5
 Apr 16 12:14:31 angola sshd[48892]: debug1: session_exit_message: session 0 channel 0 pid 48893
 Apr 16 12:14:31 angola sshd[48889]: debug1: PAM: cleanup
 Apr 16 12:14:31 angola sshd[48892]: debug1: session_exit_message: release channel 0
 Apr 16 12:14:31 angola sshd[48889]: debug1: PAM: deleting credentials
 Apr 16 12:14:31 angola sshd[48892]: debug1: session_by_channel: session 0 channel 0
 Apr 16 12:14:31 angola sshd[48889]: debug1: PAM: closing session
 Apr 16 12:14:31 angola sshd[48892]: debug1: session_close_by_channel: channel 0 child 0
 Apr 16 12:14:31 angola sshd[48892]: debug1: session_close: session 0 pid 0
 Apr 16 12:14:31 angola sshd[48892]: debug1: channel 0: free: server-session, nchannels 2
 Apr 16 12:14:31 angola sshd[48892]: Connection closed by 10.0.3.2
 Apr 16 12:14:31 angola sshd[48892]: debug1: channel 1: free: auth socket, nchannels 1
 Apr 16 12:14:31 angola sshd[48892]: debug1: do_cleanup
 Apr 16 12:14:31 angola sshd[48892]: debug1: restore_uid: (unprivileged)
 Apr 16 12:14:31 angola sshd[48892]: Transferred: sent 2264, received 2288 bytes
 Apr 16 12:14:31 angola sshd[48892]: Closing connection to 10.0.3.2 port 54543
 
 
 --Apple-Mail-17-1073225700
 Content-Transfer-Encoding: 7bit
 Content-Type: text/plain;
 	charset=us-ascii
 
 
 ---
 Eric Crist
 
 
 
 
 
 --Apple-Mail-17-1073225700--

From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no>
To: freebsd-gnats-submit@freebsd.org 
Cc:  
Subject: Re: bin/145660: ssh(1): base openssh gives an unusable terminal when using ssh to connect to a host configured for sftp only
Date: Sun, 18 Apr 2010 20:22:50 +0200

 Since this works fine in head, I think I'll simply MFC 5.4p1 to
 stable/8.
 
 DES
 --=20
 Dag-Erling Sm=C3=B8rgrav - des@des.no
State-Changed-From-To: open->closed 
State-Changed-By: osa 
State-Changed-When: Mon Aug 16 18:02:46 UTC 2010 
State-Changed-Why:  
Resubmit later in a completely different form.  Thanks for report! 

http://www.freebsd.org/cgi/query-pr.cgi?pr=145660 
>Unformatted:
