375b - scp fallback does no longer work

Advertisement

mmmartin
Guest

375b - scp fallback does no longer work

Hi, since version 375b the scp fallback does no longer work with "scp only servers" with restricted command set.

In version 374 this worked fine.
The error message: "Server refused to start a shell/command"

The scp server is configured for the shell "/bin/bash" and has only a few commands (ls,cp, ..) in the change root environment of the remote users.

If I change the settings to scp only 375b works fine too.

Why do I need the bash for scp??

Reply with quote

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Re: 375b - scp fallback does no longer work

mmmartin wrote:

Hi, since version 375b the scp fallback does no longer work with "scp only servers" with restricted command set.
Thanks. This is known issue.

Why do I need the bash for scp??
Please read requirements.

Reply with quote

Guest

Re: SCP fallback

martin wrote:

Guest wrote:

3.7.6 Build 306 scp fallback is still not working
Can you post a log file?

hallo there,
two logs enclosed
the same configuratoion with 3.7.4 - B271 and with 3.7.6 - B306
-Hall-------------------------------------------------------------------------
. 2005-08-18 09:42:21.803 WinSCP Version 3.7.4 (Build 271) (OS 4.0.1381 Service Pack 6)
. 2005-08-18 09:42:21.803 Login time: Donnerstag, 18. August 2005 09:42:21
. 2005-08-18 09:42:21.803 --------------------------------------------------------------------------
. 2005-08-18 09:42:21.803 Session name: root@linx-01.rhst
. 2005-08-18 09:42:21.803 Host name: linx-01.rhst (Port: 22)
. 2005-08-18 09:42:21.803 User name: stuckert (Password: No, Key file: No)
. 2005-08-18 09:42:21.803 Transfer Protocol: SFTP (SCP)
. 2005-08-18 09:42:21.803 SSH protocol version: 2; Compression: No
. 2005-08-18 09:42:21.803 Agent forwarding: No; TIS/CryptoCard: No; KI: Yes; GSSAPI: No
. 2005-08-18 09:42:21.803 Ciphers: aes,blowfish,3des,WARN,des; Ssh2DES: No
. 2005-08-18 09:42:21.803 Ping type: -, Ping interval: 30 sec; Timeout: 15 sec
. 2005-08-18 09:42:21.803 SSH Bugs: -,-,-,-,-,-,-,-
. 2005-08-18 09:42:21.803 SFTP Bugs: -,-,-
. 2005-08-18 09:42:21.803 Proxy: none
. 2005-08-18 09:42:21.803 Return code variable: Autodetect; Lookup user groups: Yes
. 2005-08-18 09:42:21.803 Shell: default, EOL: 0
. 2005-08-18 09:42:21.803 Local directory: default, Remote directory: home, Update: No, Cache: Yes
. 2005-08-18 09:42:21.803 Cache directory changes: Yes, Permanent: Yes
. 2005-08-18 09:42:21.803 Clear aliases: Yes, Unset nat.vars: Yes, Resolve symlinks: Yes
. 2005-08-18 09:42:21.803 Alias LS: No, Ign LS warn: Yes, Scp1 Comp: No
. 2005-08-18 09:42:21.803 --------------------------------------------------------------------------
. 2005-08-18 09:42:21.803 Looking up host "linx-01.rhst"
. 2005-08-18 09:42:21.823 Connecting to 192.168.82.26 port 22
. 2005-08-18 09:42:21.833 Server version: SSH-1.99-OpenSSH_2.1.1
. 2005-08-18 09:42:21.833 We believe remote version has SSH2 public-key-session-ID bug
. 2005-08-18 09:42:21.833 We believe remote version has SSH2 rekey bug
. 2005-08-18 09:42:21.833 We claim version: SSH-2.0-WinSCP_release_3.7.4
. 2005-08-18 09:42:21.833 Using SSH protocol version 2
. 2005-08-18 09:42:21.833 Using Diffie-Hellman with standard group "group1"
. 2005-08-18 09:42:21.833 Doing Diffie-Hellman key exchange
. 2005-08-18 09:42:22.795 Host key fingerprint is:
. 2005-08-18 09:42:22.795 ssh-dss 1024 c8:10:5b:4b:67:2e:d3:96:24:aa:10:48:01:60:b9:cb
. 2005-08-18 09:42:22.795 Initialised Blowfish client->server encryption
. 2005-08-18 09:42:22.795 Initialised HMAC-SHA1 client->server MAC algorithm
. 2005-08-18 09:42:22.795 Initialised Blowfish server->client encryption
. 2005-08-18 09:42:22.795 Initialised HMAC-SHA1 server->client MAC algorithm
! 2005-08-18 09:42:22.795 Using username "stuckert".
. 2005-08-18 09:42:22.805 Session password prompt (stuckert@linx-01.rhst's password: )
. 2005-08-18 09:42:22.805 Asking user for password.
. 2005-08-18 09:42:25.849 Sent password
. 2005-08-18 09:42:25.879 Access granted
. 2005-08-18 09:42:25.879 Opened channel for session
. 2005-08-18 09:42:25.889 Primary command failed; attempting fallback
. 2005-08-18 09:42:25.889 Started a shell/command
. 2005-08-18 09:42:25.889 --------------------------------------------------------------------------
. 2005-08-18 09:42:25.899 Using SCP protocol.
. 2005-08-18 09:42:25.899 Doing startup conversation with host.
. 2005-08-18 09:42:25.899 Skipping host startup message (if any).
> 2005-08-18 09:42:25.899 echo "WinSCP: this is end-of-file:0"
< 2005-08-18 09:42:26.240 WinSCP: this is end-of-file:0
. 2005-08-18 09:42:26.240 Detecting variable containing return code of last command.
. 2005-08-18 09:42:26.240 Trying "$status".
,............ conection works !!!!



. 2005-08-18 09:40:36.688 --------------------------------------------------------------------------
. 2005-08-18 09:40:36.688 WinSCP Version 3.7.6 (Build 306) (OS 4.0.1381 Service Pack 6)
. 2005-08-18 09:40:36.688 Login time: Donnerstag, 18. August 2005 09:40:36
. 2005-08-18 09:40:36.688 --------------------------------------------------------------------------
. 2005-08-18 09:40:36.688 Session name: root@linx-01.rhst
. 2005-08-18 09:40:36.688 Host name: linx-01.rhst (Port: 22)
. 2005-08-18 09:40:36.688 User name: stuckert (Password: No, Key file: No)
. 2005-08-18 09:40:36.688 Transfer Protocol: SFTP (SCP)
. 2005-08-18 09:40:36.688 SSH protocol version: 2; Compression: No
. 2005-08-18 09:40:36.688 Agent forwarding: No; TIS/CryptoCard: No; KI: Yes; GSSAPI: No
. 2005-08-18 09:40:36.688 Ciphers: aes,blowfish,3des,WARN,des; Ssh2DES: No
. 2005-08-18 09:40:36.688 Ping type: -, Ping interval: 30 sec; Timeout: 15 sec
. 2005-08-18 09:40:36.688 SSH Bugs: -,-,-,-,-,-,-,-
. 2005-08-18 09:40:36.688 SFTP Bugs: -,-,-
. 2005-08-18 09:40:36.688 Proxy: none
. 2005-08-18 09:40:36.688 Return code variable: Autodetect; Lookup user groups: Yes
. 2005-08-18 09:40:36.688 Shell: default, EOL: 0
. 2005-08-18 09:40:36.688 Local directory: default, Remote directory: home, Update: No, Cache: Yes
. 2005-08-18 09:40:36.688 Cache directory changes: Yes, Permanent: Yes
. 2005-08-18 09:40:36.688 Clear aliases: Yes, Unset nat.vars: Yes, Resolve symlinks: Yes
. 2005-08-18 09:40:36.688 Alias LS: No, Ign LS warn: Yes, Scp1 Comp: No
. 2005-08-18 09:40:36.688 --------------------------------------------------------------------------
. 2005-08-18 09:40:36.688 Looking up host "linx-01.rhst"
. 2005-08-18 09:40:36.708 Connecting to 192.168.82.26 port 22
. 2005-08-18 09:40:36.718 Server version: SSH-1.99-OpenSSH_2.1.1
. 2005-08-18 09:40:36.718 We believe remote version has SSH-2 public-key-session-ID bug
. 2005-08-18 09:40:36.718 We believe remote version has SSH-2 rekey bug
. 2005-08-18 09:40:36.718 We claim version: SSH-2.0-WinSCP_release_3.7.6
. 2005-08-18 09:40:36.718 Using SSH protocol version 2
. 2005-08-18 09:40:36.718 Using Diffie-Hellman with standard group "group1"
. 2005-08-18 09:40:36.718 Doing Diffie-Hellman key exchange
. 2005-08-18 09:40:37.680 Host key fingerprint is:
. 2005-08-18 09:40:37.680 ssh-dss 1024 c8:10:5b:4b:67:2e:d3:96:24:aa:10:48:01:60:b9:cb
. 2005-08-18 09:40:37.680 Initialised Blowfish client->server encryption
. 2005-08-18 09:40:37.680 Initialised HMAC-SHA1 client->server MAC algorithm
. 2005-08-18 09:40:37.690 Initialised Blowfish server->client encryption
. 2005-08-18 09:40:37.690 Initialised HMAC-SHA1 server->client MAC algorithm
! 2005-08-18 09:40:37.700 Using username "stuckert".
. 2005-08-18 09:40:37.710 Session password prompt (stuckert@linx-01.rhst's password: )
. 2005-08-18 09:40:37.710 Asking user for password.
. 2005-08-18 09:40:42.066 Sent password
. 2005-08-18 09:40:42.106 Access granted
. 2005-08-18 09:40:42.106 Opened channel for session
. 2005-08-18 09:40:42.116 Server refused to start a shell/command
* 2005-08-18 09:40:42.116 (ESshFatal) Authentication failed.
* 2005-08-18 09:40:42.116 Authentication log (see session log for details):
* 2005-08-18 09:40:42.116 Using username "stuckert".
* 2005-08-18 09:40:42.116
* 2005-08-18 09:40:42.116 Server refused to start a shell/command

Reply with quote

Advertisement

martin
Site Admin
martin avatar

davidsrsb wrote:

3.7.6 does not connect to a Slackware 10.1 machine. Claims that the server is not running. 3.7.4 works ok.
This seems to be different issue. Can you post a log file both for 3.7.4 and 3.7.6? Preferably to different (new) topic. What about 3.7.5, does it work?

Reply with quote

Advertisement

Desummoner
Guest

WinSCP 3.7.6

SCP fallback still not working for me in 3.7.6 (log is exactly the same as posted above).
Logins well with explisitly set SCP in 3.7.6 and SFTP (allow SCP fallback) in 3.7.4

Reply with quote

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Re: WinSCP 3.7.6

Desummoner wrote:

SCP fallback still not working for me in 3.7.6 (log is exactly the same as posted above).
Logins well with explisitly set SCP in 3.7.6 and SFTP (allow SCP fallback) in 3.7.4
Are you using SSH-1 or SSH-2?

Reply with quote

Advertisement

You can post new topics in this forum