scp not possible with limited ssh access through rssh

Advertisement

Michael-O
Joined:
Posts:
3
Location:
Berlin

scp not possible with limited ssh access through rssh

Hi folks,

I think I have found a bug in WinSCP. This is my situation:

Ubuntu Server 8.04
OpenSSH 4.7
RSSH 2.3.2

I have configured a specific account for sftp, scp and rsync only. SFTP through WinSCP works but really slow compared to rsync. SCP fails compelety with: https://winscp.net/eng/docs/message_startup_message
I did a log and it seems like WinSCP fails with rssh installed.

I tried scp for the same account from another ubuntu box, it worked flawlessly.
The error is probably in WinSCP.

What can I do about it?

Thanks,

Mike

Reply with quote

Advertisement

Michael-O
Joined:
Posts:
3
Location:
Berlin

Hi Martin,

I read https://winscp.net/eng/docs/requirements#scp and https://winscp.net/eng/docs/requirements#restricted_shell. I guess I suffer from the latter.

This is the log output:

. 2009-11-28 13:51:31.687 --------------------------------------------------------------------------
. 2009-11-28 13:51:31.703 WinSCP Version 4.1.9 (Build 416) (OS 5.1.2600 Service Pack 3)
. 2009-11-28 13:51:31.703 Login time: Samstag, 28. November 2009 13:51:31
. 2009-11-28 13:51:31.703 --------------------------------------------------------------------------
. 2009-11-28 13:51:31.703 Session name: <hostname>/<username>
. 2009-11-28 13:51:31.703 Host name: <hostname> (Port: 22)
. 2009-11-28 13:51:31.703 User name: <username> (Password: Yes, Key file: No)
. 2009-11-28 13:51:31.703 Tunnel: No
. 2009-11-28 13:51:31.703 Transfer Protocol: SCP
. 2009-11-28 13:51:31.703 Ping type: -, Ping interval: 30 sec; Timeout: 15 sec
. 2009-11-28 13:51:31.703 Proxy: none
. 2009-11-28 13:51:31.703 SSH protocol version: 2; Compression: No
. 2009-11-28 13:51:31.703 Bypass authentication: No
. 2009-11-28 13:51:31.703 Try agent: Yes; Agent forwarding: No; TIS/CryptoCard: No; KI: Yes; GSSAPI: No
. 2009-11-28 13:51:31.703 Ciphers: blowfish,aes,3des,WARN,arcfour,des; Ssh2DES: No
. 2009-11-28 13:51:31.703 SSH Bugs: -,-,-,-,-,-,-,-
. 2009-11-28 13:51:31.703 SFTP Bugs: -,-
. 2009-11-28 13:51:31.703 Return code variable: Autodetect; Lookup user groups: Yes
. 2009-11-28 13:51:31.703 Shell: default, EOL: 0
. 2009-11-28 13:51:31.703 Clear aliases: Yes, Unset nat.vars: Yes, Resolve symlinks: Yes
. 2009-11-28 13:51:31.703 LS: ls -la, Ign LS warn: Yes, Scp1 Comp: Yes
. 2009-11-28 13:51:31.703 Local directory: default, Remote directory: home, Update: No, Cache: Yes
. 2009-11-28 13:51:31.703 Cache directory changes: Yes, Permanent: Yes
. 2009-11-28 13:51:31.703 DST mode: 1
. 2009-11-28 13:51:31.703 --------------------------------------------------------------------------
. 2009-11-28 13:51:31.781 Looking up host "<hostname>"
. 2009-11-28 13:51:31.859 Connecting to <IP> port 22
. 2009-11-28 13:51:31.937 Selecting events 63 for socket 584
. 2009-11-28 13:51:31.937 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:31.937 Looking for incoming data
. 2009-11-28 13:51:31.937 Looking for network events
. 2009-11-28 13:51:31.937 Detected network event
. 2009-11-28 13:51:31.937 Enumerating network events for socket 584
. 2009-11-28 13:51:31.937 Enumerated 18 network events making 18 cumulative events for socket 584
. 2009-11-28 13:51:31.937 Handling network write event on socket 584 with error 0
. 2009-11-28 13:51:31.937 Handling network connect event on socket 584 with error 0
. 2009-11-28 13:51:31.937 Looking for network events
. 2009-11-28 13:51:32.046 Detected network event
. 2009-11-28 13:51:32.046 Enumerating network events for socket 584
. 2009-11-28 13:51:32.046 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:32.046 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:32.046 Server version: SSH-2.0-OpenSSH_4.7p1 Debian-8ubuntu1.2
. 2009-11-28 13:51:32.046 We claim version: SSH-2.0-WinSCP_release_4.1.9
. 2009-11-28 13:51:32.093 SSPI: acquired credentials for: <UPN>
. 2009-11-28 13:51:32.093 Constructed service principal name 'host/<hostname>'
. 2009-11-28 13:51:32.109 GSSKEX disabled: Im Sicherheitspaket sind keine Anmeldeinformationen verf�gbar.

. 2009-11-28 13:51:32.109 Using SSH protocol version 2
. 2009-11-28 13:51:32.109 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:32.109 Looking for incoming data
. 2009-11-28 13:51:32.109 Looking for network events
. 2009-11-28 13:51:32.109 Detected network event
. 2009-11-28 13:51:32.109 Enumerating network events for socket 584
. 2009-11-28 13:51:32.109 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:32.109 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:32.109 Doing Diffie-Hellman group exchange
. 2009-11-28 13:51:32.109 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:32.109 Looking for incoming data
. 2009-11-28 13:51:32.109 Looking for network events
. 2009-11-28 13:51:32.296 Detected network event
. 2009-11-28 13:51:32.296 Enumerating network events for socket 584
. 2009-11-28 13:51:32.296 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:32.296 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:32.312 Doing Diffie-Hellman key exchange with hash SHA-1
. 2009-11-28 13:51:32.328 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:32.328 Looking for incoming data
. 2009-11-28 13:51:32.328 Looking for network events
. 2009-11-28 13:51:32.421 Detected network event
. 2009-11-28 13:51:32.421 Enumerating network events for socket 584
. 2009-11-28 13:51:32.421 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:32.421 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:32.453 Selecting events 63 for socket 584
. 2009-11-28 13:51:32.453 Host key fingerprint is:
. 2009-11-28 13:51:32.453 ssh-rsa 2048 4f:c2:c4:21:27:68:fc:32:e9:ac:19:e2:52:a2:1b:44
. 2009-11-28 13:51:32.453 Initialised Blowfish-128 CBC client->server encryption
. 2009-11-28 13:51:32.453 Initialised HMAC-SHA1 client->server MAC algorithm
. 2009-11-28 13:51:32.453 Initialised Blowfish-128 CBC server->client encryption
. 2009-11-28 13:51:32.453 Initialised HMAC-SHA1 server->client MAC algorithm
. 2009-11-28 13:51:32.453 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:32.453 Looking for incoming data
. 2009-11-28 13:51:32.453 Looking for network events
. 2009-11-28 13:51:32.609 Detected network event
. 2009-11-28 13:51:32.609 Enumerating network events for socket 584
. 2009-11-28 13:51:32.609 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:32.609 Handling network read event on socket 584 with error 0
! 2009-11-28 13:51:32.609 Using username "<username>".
. 2009-11-28 13:51:32.609 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:32.609 Looking for incoming data
. 2009-11-28 13:51:32.609 Looking for network events
. 2009-11-28 13:51:33.109 Detected network event
. 2009-11-28 13:51:33.109 Enumerating network events for socket 584
. 2009-11-28 13:51:33.109 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:33.109 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:33.109 Prompt (6, SSH password, , &Passwort:)
. 2009-11-28 13:51:33.109 Using stored password.
. 2009-11-28 13:51:33.109 Sent password
. 2009-11-28 13:51:33.109 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:33.109 Looking for incoming data
. 2009-11-28 13:51:33.109 Looking for network events
. 2009-11-28 13:51:33.187 Detected network event
. 2009-11-28 13:51:33.187 Enumerating network events for socket 584
. 2009-11-28 13:51:33.187 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:33.187 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:33.187 Access granted
. 2009-11-28 13:51:33.187 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:33.187 Looking for incoming data
. 2009-11-28 13:51:33.187 Looking for network events
. 2009-11-28 13:51:33.265 Detected network event
. 2009-11-28 13:51:33.265 Enumerating network events for socket 584
. 2009-11-28 13:51:33.265 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:33.265 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:33.265 Opened channel for session
. 2009-11-28 13:51:33.265 Waiting for the server to continue with the initialisation
. 2009-11-28 13:51:33.265 Looking for incoming data
. 2009-11-28 13:51:33.265 Looking for network events
. 2009-11-28 13:51:33.328 Detected network event
. 2009-11-28 13:51:33.328 Enumerating network events for socket 584
. 2009-11-28 13:51:33.328 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:33.328 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:33.328 Started a shell/command
. 2009-11-28 13:51:33.328 --------------------------------------------------------------------------
. 2009-11-28 13:51:33.328 Using SCP protocol.
. 2009-11-28 13:51:33.328 Doing startup conversation with host.
. 2009-11-28 13:51:33.328 Skipping host startup message (if any).
. 2009-11-28 13:51:33.328 Sent 36 bytes
. 2009-11-28 13:51:33.328 There are 0 bytes remaining in the send buffer
. 2009-11-28 13:51:33.328 Looking for network events
. 2009-11-28 13:51:33.328 Timeout waiting for network events
. 2009-11-28 13:51:33.328 Sent 1 bytes
. 2009-11-28 13:51:33.328 There are 0 bytes remaining in the send buffer
. 2009-11-28 13:51:33.328 Looking for network events
. 2009-11-28 13:51:33.328 Timeout waiting for network events
> 2009-11-28 13:51:33.328 echo "WinSCP: this is end-of-file:0"
. 2009-11-28 13:51:33.328 Waiting for another 1 bytes
. 2009-11-28 13:51:33.328 Looking for incoming data
. 2009-11-28 13:51:33.328 Looking for network events
. 2009-11-28 13:51:33.343 Detected network event
. 2009-11-28 13:51:33.343 Enumerating network events for socket 584
. 2009-11-28 13:51:33.343 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:33.343 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:33.343 Received 147 bytes (1)
! 2009-11-28 13:51:33.343 This account is restricted by rssh.
! 2009-11-28 13:51:33.343 Allowed commands: scp sftp rsync
! 2009-11-28 13:51:33.343 If you believe this is in error, please contact your system administrator.
. 2009-11-28 13:51:33.343 Waiting for another 1 bytes
. 2009-11-28 13:51:33.343 Looking for incoming data
. 2009-11-28 13:51:33.343 Looking for network events
. 2009-11-28 13:51:33.390 Detected network event
. 2009-11-28 13:51:33.390 Enumerating network events for socket 584
. 2009-11-28 13:51:33.390 Enumerated 1 network events making 1 cumulative events for socket 584
. 2009-11-28 13:51:33.390 Handling network read event on socket 584 with error 0
. 2009-11-28 13:51:33.390 Server sent command exit status 0
. 2009-11-28 13:51:33.390 Selecting events 0 for socket 584
. 2009-11-28 13:51:33.390 Disconnected: All channels closed
* 2009-11-28 13:51:33.390 (ESshFatal) Die Verbindung wurde unerwartet geschlossen. Der Server sendete den Befehlsbeendigungsstatus 0.
* 2009-11-28 13:51:33.390 Fehler beim �berspringen der Startnachricht. Ihre Kommandozeile (Shell) ist m�glicherweise nicht mit dieser Anwendung kompatibel (BASH wird empfohlen).

Names have been obfuscated.

Reply with quote

Advertisement

You can post new topics in this forum