ssh authorized key failure

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Since the last selinux update on May 20,
selinux-policy-targeted-3.13.1-225.16.fc25.noarch.

My Android client Juice ssh mosh encryption key fails to authenticate.
First found avc that was due to the use_nfs_home_dirs --> off getting
turned off. Still fails with the following journal information, no avc
logged. We have also tried turning up the log level on sshd and totally
disable selinux. So given that we did a total disable of selinux and it
still fails we are at a loss where to go next.

Jun 09 19:06:25 spruce audit[2267]: CRYPTO_SESSION pid=2267 uid=0 auid=429496729
5 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=start dire
ction=from-client cipher=aes128-ctr ksize=128 mac=hmac-sha1 pfs=ecdh-sha2-nistp2
56 spid=2268 suid=74 rport=37507 laddr=10.2.2.2 lport=22  exe="/usr/sbin/sshd" h
ostname=? addr=74.92.228.89 terminal=? res=success'
Jun 09 19:06:25 spruce audit[2267]: USER_AUTH pid=2267 uid=0 auid=4294967295 ses
=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=pubkey acct="dh
ighley" exe="/usr/sbin/sshd" hostname=? addr=74.92.228.89 terminal=ssh res=failed'
Jun 09 19:06:25 spruce kernel: audit: type=1100 audit(1497060385.743:353): pid=2267 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=pubkey acct="dhighley" exe="/usr/sbin/sshd" hostname=? addr=74.92.228.89 terminal=ssh res=failed'
Jun 09 19:06:25 spruce sshd[2267]: error: Received disconnect from 74.92.228.89 port 37507:3: com.jcraft.jsch.JSchException: Auth cancel [preauth]
Jun 09 19:06:25 spruce audit[2267]: CRYPTO_KEY_USER pid=2267 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=destroy kind=server fp=SHA256:d1:e7:9d:df:7e:c5:05:7c:22:2c:44:d4:21:c3:3b:02:ea:2c:32:9a:cd:b6:c3:93:d7:22:37:20:3d:75:1d:bb direction=? spid=2268 suid=74  exe="/usr/sbin/sshd" hostname=? addr=? terminal=? res=success'
Jun 09 19:06:25 spruce kernel: audit: type=2404 audit(1497060385.754:354): pid=2267 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=destroy kind=server fp=SHA256:d1:e7:9d:df:7e:c5:05:7c:22:2c:44:d4:21:c3:3b:02:ea:2c:32:9a:cd:b6:c3:93:d7:22:37:20:3d:75:1d:bb direction=? spid=2268 suid=74  exe="/usr/sbin/sshd" hostname=? addr=? terminal=? res=success'
Jun 09 19:06:25 spruce kernel: audit: type=2404 audit(1497060385.754:355): pid=2267 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=destroy kind=session fp=? direction=both spid=2268 suid=74 rport=37507 laddr=10.2.2.2 lport=22  exe="/usr/sbin/sshd" hostname=? addr=74.92.228.89 terminal=? res=success'
Jun 09 19:06:25 spruce kernel: audit: type=1109 audit(1497060385.754:356): pid=2267 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=PAM:bad_ident grantors=? acct="?" exe="/usr/sbin/sshd" hostname=74.92.228.89 addr=74.92.228.89 terminal=ssh res=failed'
_______________________________________________
selinux mailing list -- selinux@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to selinux-leave@xxxxxxxxxxxxxxxxxxxxxxx
[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Big List of Linux Books]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux