[jhunt5247]

Greetings,

I am having some problems that I can't seem to fix. Well actually I thought I had them corrected until it seems something has changed again (maybe install X11 SDK for Fink).

Hell I dunno, I am pretty lost at this point. Here is the problem:

I have ForwardX11 set to yes in ssh_config, however when I connect to a remote machine I get this error:

Warning: No xauth data; using fake authentication data for X11 forwarding.

I get this error message from both OS X terminal and xterm. I can run X11 apps that reside on my machine, but not on remote machines. I do have an .Xauthority file in my home directory as well.

As I stated, I thought I had this worked out yesterday, but this morning it is back. Anyone have any comments on this??

here is the output of ssh -v -X:

akula@lippisch:~$ ssh -l root -X -v pegasus
OpenSSH_3.6.1p1+CAN-2003-0693, SSH protocols 1.5/2.0, OpenSSL 0x0090702f
debug1: Reading configuration data /etc/ssh_config
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: Connecting to pegasus [192.168.2.213] port 22.
debug1: Connection established.
debug1: identity file /Users/akula/.ssh/identity type -1
debug1: identity file /Users/akula/.ssh/id_rsa type -1
debug1: identity file /Users/akula/.ssh/id_dsa type -1
debug1: Remote protocol version 1.99, remote software version OpenSSH_3.7.1p2
debug1: match: OpenSSH_3.7.1p2 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p1+CAN-2003-0693
debug1: An invalid name was supplied
Configuration file does not specify default realm

debug1: An invalid name was supplied
A parameter was malformed
Validation error

debug1: An invalid name was supplied
Configuration file does not specify default realm

debug1: An invalid name was supplied
A parameter was malformed
Validation error

debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host 'pegasus' is known and matches the RSA host key.
debug1: Found key in /Users/akula/.ssh/known_hosts:7
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password,keyboard-interacti
ve
debug1: Next authentication method: publickey
debug1: Trying private key: /Users/akula/.ssh/identity
debug1: Trying private key: /Users/akula/.ssh/id_rsa
debug1: Trying private key: /Users/akula/.ssh/id_dsa
debug1: Next authentication method: keyboard-interactive
debug1: Authentications that can continue: publickey,password,keyboard-interacti
ve
debug1: Next authentication method: password
root@pegasus's password:
debug1: Authentication succeeded (password).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: channel 0: request pty-req
Warning: No xauth data; using fake authentication data for X11 forwarding.
debug1: Requesting X11 forwarding with authentication spoofing.
debug1: channel 0: request x11-req
debug1: channel 0: request shell
debug1: channel 0: open confirm rwindow 0 rmax 32768
Last login: Tue Oct 28 08:51:41 2003 from lippisch

----

I put in bold some items that I am not sure of.. God, any help on this would be appreciated.. I have searched deja with little hope..

[incandenza]

Don't know if these will work, but here are two things to try:

1) Copy the .Xauthority file from your home directory on the local machine to your home directory on the remote machine.

If that doesn't work:

2) Turn off 'Authenticate connections' in the X11 preferences. Make sure no one you don't want on your X11 display can connect to your X ports (use the built-in firewall if necessary).

[jhunt5247]

Originally posted by incandenza:
Don't know if these will work, but here are two things to try:

1) Copy the .Xauthority file from your home directory on the local machine to your home directory on the remote machine.

If that doesn't work:

2) Turn off 'Authenticate connections' in the X11 preferences. Make sure no one you don't want on your X11 display can connect to your X ports (use the built-in firewall if necessary).

Well I log into the remote machines as root (as several other people here at work that have access) and until this new X11 and panther never hand a single problem.

I tried the second recommendation earlier today and still had no luck.

A better question might be, is anyone able to do X11 forwarding with Panther and the version of X11 that was supplied?

If so, can you paste the contents of you /etc/ssh_config file and your .profile/.bashrc

Thanks

[Detrius]

More importantly, do you have X11Forwarding turned on in /etc/sshd_config on the server??

If it was not turned on, you will need to reset the server, of course (kill -HUP <sshd pid>)

[Detrius]

if you have openssh installed via fink, you may instead need to check out /sw/etc/sshd_config and /sw/etc/ssh_config.

sshd is of course on the server side.

[jhunt5247]

Originally posted by Detrius:
More importantly, do you have X11Forwarding turned on in /etc/sshd_config on the server??

If it was not turned on, you will need to reset the server, of course (kill -HUP <sshd pid>)

Yes of course.. this problem just started with the install of Panther.

The problem turned out to be DNS related. Panther adds a .profile to the end of the computer name in System Preferences/Sharing, which in turned had my .Xauthority file screwed up.

This of course was not Panther's fault, but an incorrect setting on our internal DNS server.