Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- xxxxxxxxx@xxxxxxxxx-PC ~
- $ ssh -vv -X xxxxxxxxx@xxx.xxx.x.xxx
- OpenSSH_7.8p1, OpenSSL 1.0.2p 14 Aug 2018
- debug2: resolve_canonicalize: hostname xxx.xxx.x.xxx is address
- debug2: ssh_connect_direct
- debug1: Connecting to xxx.xxx.x.xxx [xxx.xxx.x.xxx] port 22.
- debug1: Connection established.
- debug1: identity file /home/xxxxxxxxx/.ssh/id_rsa type 0
- debug1: identity file /home/xxxxxxxxx/.ssh/id_rsa-cert type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_dsa type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_dsa-cert type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_ecdsa type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_ecdsa-cert type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_ed25519 type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_ed25519-cert type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_xmss type -1
- debug1: identity file /home/xxxxxxxxx/.ssh/id_xmss-cert type -1
- debug1: Local version string SSH-2.0-OpenSSH_7.8
- debug1: Remote protocol version 2.0, remote software version OpenSSH_7.6p1 Ubuntu-4ubuntu0.1
- debug1: match: OpenSSH_7.6p1 Ubuntu-4ubuntu0.1 pat OpenSSH_7.0*,OpenSSH_7.1*,OpenSSH_7.2*,OpenSSH_7.3*,OpenSSH_7.4*,OpenSSH_7.5*,OpenSSH_7.6*,OpenSSH_7.7* compat 0x04000002
- debug2: fd 3 setting O_NONBLOCK
- debug1: Authenticating to xxx.xxx.x.xxx:22 as 'xxxxxxxxx'
- debug1: SSH2_MSG_KEXINIT sent
- debug1: SSH2_MSG_KEXINIT received
- debug2: local client KEXINIT proposal
- debug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,ext-info-c
- debug2: host key algorithms: ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa
- debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
- debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
- debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
- debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
- debug2: compression ctos: none,zlib@openssh.com,zlib
- debug2: compression stoc: none,zlib@openssh.com,zlib
- debug2: languages ctos:
- debug2: languages stoc:
- debug2: first_kex_follows 0
- debug2: reserved 0
- debug2: peer server KEXINIT proposal
- debug2: KEX algorithms: curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1
- debug2: host key algorithms: ssh-rsa,rsa-sha2-512,rsa-sha2-256,ecdsa-sha2-nistp256,ssh-ed25519
- debug2: ciphers ctos: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
- debug2: ciphers stoc: chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com
- debug2: MACs ctos: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
- debug2: MACs stoc: umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
- debug2: compression ctos: none,zlib@openssh.com
- debug2: compression stoc: none,zlib@openssh.com
- debug2: languages ctos:
- debug2: languages stoc:
- debug2: first_kex_follows 0
- debug2: reserved 0
- debug1: kex: algorithm: curve25519-sha256
- debug1: kex: host key algorithm: ecdsa-sha2-nistp256
- debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
- debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
- debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
- debug1: Server host key: ecdsa-sha2-nistp256 SHA256:3bJ4ybkpZBKgbP825aaWyNkqlZD3iTMUwgJvfb5r/HU
- debug1: Host 'xxx.xxx.x.xxx' is known and matches the ECDSA host key.
- debug1: Found key in /home/xxxxxxxxx/.ssh/known_hosts:1
- debug2: set_newkeys: mode 1
- debug1: rekey after 134217728 blocks
- debug1: SSH2_MSG_NEWKEYS sent
- debug1: expecting SSH2_MSG_NEWKEYS
- debug1: SSH2_MSG_NEWKEYS received
- debug2: set_newkeys: mode 0
- debug1: rekey after 134217728 blocks
- debug2: key: /home/xxxxxxxxx/.ssh/id_rsa (0x6000612a0)
- debug2: key: /home/xxxxxxxxx/.ssh/id_dsa (0x0)
- debug2: key: /home/xxxxxxxxx/.ssh/id_ecdsa (0x0)
- debug2: key: /home/xxxxxxxxx/.ssh/id_ed25519 (0x0)
- debug2: key: /home/xxxxxxxxx/.ssh/id_xmss (0x0)
- debug1: SSH2_MSG_EXT_INFO received
- debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521>
- debug2: service_accept: ssh-userauth
- debug1: SSH2_MSG_SERVICE_ACCEPT received
- debug1: Authentications that can continue: publickey,password
- debug1: Next authentication method: publickey
- debug1: Offering public key: RSA SHA256:KRPrnbeowYMk7q0WFIU47jXxs3ZrU63iHwrf050A9Sc /home/xxxxxxxxx/.ssh/id_rsa
- debug2: we sent a publickey packet, wait for reply
- debug1: Server accepts key: pkalg rsa-sha2-512 blen 279
- debug2: input_userauth_pk_ok: fp SHA256:KRPrnbeowYMk7q0WFIU47jXxs3ZrU63iHwrf050A9Sc
- debug1: Authentication succeeded (publickey).
- Authenticated to xxx.xxx.x.xxx ([xxx.xxx.x.xxx]:22).
- debug1: channel 0: new [client-session]
- debug2: channel 0: send open
- debug1: Requesting no-more-sessions@openssh.com
- debug1: Entering interactive session.
- debug1: pledge: exec
- debug1: client_input_global_request: rtype hostkeys-00@openssh.com want_reply 0
- debug2: channel_input_open_confirmation: channel 0: callback start
- debug2: client_x11_get_proto: /usr/bin/xauth -f /tmp/ssh-GNvkAnvxZLop/xauthfile generate :0 MIT-MAGIC-COOKIE-1 untrusted timeout 1260 2>/dev/null
- debug2: x11_get_proto: /usr/bin/xauth -f /tmp/ssh-GNvkAnvxZLop/xauthfile list :0 2>/dev/null
- debug1: Requesting X11 forwarding with authentication spoofing.
- debug2: channel 0: request x11-req confirm 1
- debug2: fd 3 setting TCP_NODELAY
- debug2: client_session2_setup: id 0
- debug2: channel 0: request pty-req confirm 1
- debug2: channel 0: request shell confirm 1
- debug2: channel_input_open_confirmation: channel 0: callback done
- debug2: channel 0: open confirm rwindow 0 rmax 32768
- debug2: channel_input_status_confirm: type 99 id 0
- debug2: X11 forwarding request accepted on channel 0
- debug2: channel_input_status_confirm: type 99 id 0
- debug2: PTY allocation request accepted on channel 0
- debug2: channel 0: rcvd adjust 2097152
- debug2: channel_input_status_confirm: type 99 id 0
- debug2: shell request accepted on channel 0
- Welcome to Ubuntu 18.04.1 LTS (GNU/Linux 4.15.0-42-generic x86_64)
- * Documentation: https://help.ubuntu.com
- * Management: https://landscape.canonical.com
- * Support: https://ubuntu.com/advantage
- * Canonical Livepatch is enabled.
- - All available patches applied.
- 0 packages can be updated.
- 0 updates are security updates.
- Last login: Sun Dec 9 17:34:32 2018 from 192.168.1.152
- xxxxxxxxx@UbuntuBox:~$
- # This is the ssh client system-wide configuration file. See
- # ssh_config(5) for more information. This file provides defaults for
- # users, and the values can be changed in per-user configuration files
- # or on the command line.
- # Configuration data is parsed as follows:
- # 1. command line options
- # 2. user-specific file
- # 3. system-wide file
- # Any configuration value is only changed the first time it is set.
- # Thus, host-specific definitions should be at the beginning of the
- # configuration file, and defaults at the end.
- # Site-wide defaults for some commonly used options. For a comprehensive
- # list of available options, their meanings and defaults, please see the
- # ssh_config(5) man page.
- Host *
- ForwardAgent yes
- ForwardX11 yes
- ForwardX11Trusted yes
- # PasswordAuthentication yes
- # HostbasedAuthentication no
- # GSSAPIAuthentication no
- # GSSAPIDelegateCredentials no
- # GSSAPIKeyExchange no
- # GSSAPITrustDNS no
- # BatchMode no
- # CheckHostIP yes
- # AddressFamily any
- # ConnectTimeout 0
- # StrictHostKeyChecking ask
- # IdentityFile ~/.ssh/id_rsa
- # IdentityFile ~/.ssh/id_dsa
- # IdentityFile ~/.ssh/id_ecdsa
- # IdentityFile ~/.ssh/id_ed25519
- Port 22
- Protocol 2
- # Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc
- # MACs hmac-md5,hmac-sha1,umac-64@openssh.com
- # EscapeChar ~
- # Tunnel no
- # TunnelDevice any:any
- # PermitLocalCommand no
- # VisualHostKey no
- # ProxyCommand ssh -q -W %h:%p gateway.example.com
- # RekeyLimit 1G 1h
- SendEnv LANG LC_*
- HashKnownHosts yes
- GSSAPIAuthentication yes
- # $OpenBSD: sshd_config,v 1.101 2017/03/14 07:19:07 djm Exp $
- # This is the sshd server system-wide configuration file. See
- # sshd_config(5) for more information.
- # This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
- # The strategy used for options in the default sshd_config shipped with
- # OpenSSH is to specify options with their default value where
- # possible, but leave them commented. Uncommented options override the
- # default value.
- #Port 22
- #AddressFamily any
- #ListenAddress 0.0.0.0
- #ListenAddress ::
- #HostKey /etc/ssh/ssh_host_rsa_key
- #HostKey /etc/ssh/ssh_host_ecdsa_key
- #HostKey /etc/ssh/ssh_host_ed25519_key
- # Ciphers and keying
- #RekeyLimit default none
- # Logging
- #SyslogFacility AUTH
- #LogLevel INFO
- # Authentication:
- #LoginGraceTime 2m
- #PermitRootLogin prohibit-password
- #StrictModes yes
- #MaxAuthTries 6
- #MaxSessions 10
- #PubkeyAuthentication yes
- # Expect .ssh/authorized_keys2 to be disregarded by default in future.
- #AuthorizedKeysFile .ssh/authorized_keys .ssh/authorized_keys2
- #AuthorizedPrincipalsFile none
- #AuthorizedKeysCommand none
- #AuthorizedKeysCommandUser nobody
- # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
- #HostbasedAuthentication no
- # Change to yes if you don't trust ~/.ssh/known_hosts for
- # HostbasedAuthentication
- #IgnoreUserKnownHosts no
- # Don't read the user's ~/.rhosts and ~/.shosts files
- #IgnoreRhosts yes
- # To disable tunneled clear text passwords, change to no here!
- #PasswordAuthentication yes
- #PermitEmptyPasswords no
- # Change to yes to enable challenge-response passwords (beware issues with
- # some PAM modules and threads)
- ChallengeResponseAuthentication no
- # Kerberos options
- #KerberosAuthentication no
- #KerberosOrLocalPasswd yes
- #KerberosTicketCleanup yes
- #KerberosGetAFSToken no
- # GSSAPI options
- #GSSAPIAuthentication no
- #GSSAPICleanupCredentials yes
- #GSSAPIStrictAcceptorCheck yes
- #GSSAPIKeyExchange no
- # Set this to 'yes' to enable PAM authentication, account processing,
- # and session processing. If this is enabled, PAM authentication will
- # be allowed through the ChallengeResponseAuthentication and
- # PasswordAuthentication. Depending on your PAM configuration,
- # PAM authentication via ChallengeResponseAuthentication may bypass
- # the setting of "PermitRootLogin without-password".
- # If you just want the PAM account and session checks to run without
- # PAM authentication, then enable this but set PasswordAuthentication
- # and ChallengeResponseAuthentication to 'no'.
- UsePAM yes
- AllowAgentForwarding yes
- #AllowTcpForwarding yes
- #GatewayPorts no
- X11Forwarding yes
- X11DisplayOffset 10
- X11UseLocalhost yes
- #PermitTTY yes
- PrintMotd no
- #PrintLastLog yes
- #TCPKeepAlive yes
- #UseLogin no
- #PermitUserEnvironment no
- #Compression delayed
- #ClientAliveInterval 0
- #ClientAliveCountMax 3
- #UseDNS no
- #PidFile /var/run/sshd.pid
- #MaxStartups 10:30:100
- #PermitTunnel no
- #ChrootDirectory none
- #VersionAddendum none
- # no default banner path
- #Banner none
- # Allow client to pass locale environment variables
- AcceptEnv LANG LC_*
- # override default of no subsystems
- Subsystem sftp /usr/lib/openssh/sftp-server
- # Example of overriding settings on a per-user basis
- #Match User anoncvs
- # X11Forwarding no
- # AllowTcpForwarding no
- # PermitTTY no
- # ForceCommand cvs server
Add Comment
Please, Sign In to add comment