Connection failure to an OpenVMS SSH server

Connection failure to an OpenVMS SSH server

Post by David Balaz » Tue, 20 Aug 2002 05:05:05


I get "Access denied" when attempting to log into an OpenVMS
SSH server. It work with another SSH client ( a command line one ).

Here is the log of the working session :
D:\TEMPK\winssh>ssh -v -L -L -l uel003r2a
SSH Version 1.2.14 [winnt-4.0-x86], protocol version 1.4.
Standard version.  Does not use RSAREF.
ssh_connect: getuid 0 geteuid 0 anon 0
Connecting to [] port 22.
Connection established.
Remote protocol version 1.5, remote software version OSU_1.4alpha3
Waiting for server public key.
Received server public key (1792 bits) and host key (2048 bits).
Host '' is known and matches the host key.
Initializing random; seed file
Encryption type: idea
Sent encrypted session key.
Received encrypted confirmation.
Doing password authentication.
Requesting pty.
Connections to local port 2110 forwarded to remote address
Allocated channel 0.

Connections to local port 2025 forwarded to remote address
Allocated channel 1.

Requesting shell.
Entering interactive session.

    SSH login from Host: Port: 3003
    Last interactive login on Sunday, 18-AUG-2002 10:52:27.64
    Last non-interactive login on Friday, 16-AUG-2002 19:10:51.89

            You have 7 new Mail messages.
%SET-W-NOTSET, error modifying FTA318:
-SET-I-UNKTERM, unknown terminal type

               Your Process name is : "David 1"
      OpenVMS User Processes at 18-AUG-2002 21:37:41.12
    Total number of users = 1,  number of processes = 1

 Username   Process Name    PID     Terminal
 UEL003R2A  David 1       0003BA49  FTA318:


and here is the log of the failed PuTTY connection ( I use default
I only enter the host name and select SSH as the type of connection )

2002-08-18 21:53:25     Looking up host ""
2002-08-18 21:53:26     Connecting to port 22
2002-08-18 21:53:26     Server version: SSH-1.5-OSU_1.4alpha3
2002-08-18 21:53:26     We claim version: SSH-1.5-PuTTY-Release-0.52
2002-08-18 21:53:26     Using SSH protocol version 1
2002-08-18 21:53:26     Received public keys
2002-08-18 21:53:26     Host key fingerprint is:
2002-08-18 21:53:26           2048
2002-08-18 21:53:26     Encrypted session key
2002-08-18 21:53:26     AES not supported in SSH1, skipping
2002-08-18 21:53:26     Using Blowfish encryption
2002-08-18 21:53:26     Trying to enable encryption...
2002-08-18 21:53:26     Initialised Blowfish encryption
2002-08-18 21:53:27     Installing CRC compensation attack detector
2002-08-18 21:53:27     Successfully started encryption
2002-08-18 21:53:32     Sent username "uel003r2a"
2002-08-18 21:53:35     Sending password with camouflage packets
2002-08-18 21:53:35     Sent password
2002-08-18 21:53:35     Authentication refused


1. Installing ssh server on OpenVMS?


I'm in the process of finding out what is involved in getting ssh
running on my OpenVMS box(es).

This seems fairly intimidating, mainly because I'm not that familiar
with VMS. Our usual VMS admin has been attached to another project and
I'm filling in, but am not comfortable in the OpenVMS environment.

I've found the ssh server that David Jones has developed, and I'm
working through finding out if I have all of the system tools I'll
need to build it on my 6.2 and 7.1 systems. I do have a few questions

 While most of the docs for the OpenVMS ssh server suggest using
 SSLeay, there are a few notes that refer to OpenSSL (0.9.5a). I read
 the INSTALL.VMS notes for OpenSSL 0.9.6a: it looks somewhat more
 involved than I had hoped, particularly the OS version troubles.

 - Is one SSL easier to install that the other (SSLeay vs. OpenSSL)?

 - Is one SSL more secure than the other?

 - Is the VMS ssh server subject to the CRC32 exploit?

 - Is this server being actively maintained?

 - Are there any alternatives (portable OpenSSH)?

Before I even get to that point, I need to put the tools in place to
compile the source.  At present, I'm pretty sure I don't have a C
compiler installed on either system. I'm trying to find out about DECC
and whether we still have a site license or not. OpenSSL mentions that
it can be compiled by either DECC or GNUC.

 - If I install GNUC to compile the SSL, will the SSH server also
   compile with it?

I suppose that what I'd like is an installation cookbook, with the
process laid out in a step-by-step manner. In the meanwhile I'll keep
groping my way through Digital's docs, the included notes and the
online help.

Thanks in advance.
Kevin Beauchamp

2. Minimized Windows Dont Restore

3. Please help to debug SSH connection failure

4. Need Apple CD300 driver for Adaptec 1542

5. PAM_pwdb[pid] records failure on ssh attempts, but connection works

6. problems with %STR and quoting of quotation marks

7. Does SSH server have any kind of connection limits or max ssh sessions it can handle?

8. Moving DHCP database to new DHCP server?

9. SSH on OpenVMS

10. SSH from NT to AIX and OpenVMS

11. ssh under OpenVMS - status?

12. looking for SSH on Alpha/OpenVMS

13. SSH on OpenVMS - Missing file