[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Backport request

Hello,
is it possible to create a backport of the latest openssh (7.x) for wheeze.

Background:
We are using gitlab.com to mirror our repositories. The reposiotries themselves are hosted here internally on a wheeze box, which we can not replace at the moment for various reasons. AFter each push, there is a hook which mirrors the repository to gitlab.com.

This was working before, but stopped recently. I have identified the problem to be the ssh connection (I tried the same connection method on another box with openssh-client 7.2, and it works). But not with 6.6 we have on wheeze.

So, I guess there's something changed after 6.6.

With 6.6 on wheeze:
$ ssh -vvv -o LogLevel=DEBUG3 -i somekeyfile git@gitlab.com
OpenSSH_6.6.1, OpenSSL 1.0.1t  3 May 2016
debug1: Reading configuration data /home/sunny/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to gitlab.com [52.167.219.168] port 22.
debug1: Connection established.
debug3: Incorrect RSA1 identifier
debug3: Could not load "somekeyfile" as a RSA1 public key
debug1: identity file somekeyfile type 1
debug1: identity file somekeyfile-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.6.1p1 Debian-4~bpo70+1
ssh_exchange_identification: read: Connection timed out

With 7.2 on another box:
OpenSSH_7.2p2, OpenSSL 1.0.2l-fips  25 May 2017
debug1: Reading configuration data /home/sunny/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 20: Applying options for *
debug2: resolving "gitlab.com" port 22
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to gitlab.com [52.167.219.168] port 22.
debug1: Connection established.
debug1: identity file somekeyfile type 1
debug1: key_load_public: No such file or directory
debug1: identity file somekeyfile-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_7.2
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.2p2 Ubuntu-4ubuntu2.2
debug1: match: OpenSSH_7.2p2 Ubuntu-4ubuntu2.2 pat OpenSSH* compat 0x04000000
.... keep going - connection completes

--
Svetoslav Milenov (Sunny)

Artificial Intelligence is no match for natural stupidity.
Reply to: