search

kryptco / kr

DEPRECATED A dev tool for SSH auth + Git commit/tag signing using a key stored in Krypton.
https://krypt.co/developers/
Other
1.59k stars 109 forks source link

ssh_exchange_identification: Connection closed by remote host #274

Open ukor opened 5 years ago

ukor commented 5 years ago

I can't access GitHub and my VPS on digital ocean. I get the error: ssh_exchange_identification: Connection closed by remote host

I ran ssh -vvv git@github.com

OpenSSH_7.4p1, LibreSSL 2.5.0
debug1: Reading configuration data /Users/coinkudi/.ssh/config
debug1: /Users/coinkudi/.ssh/config line 2: Applying options for *
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Executing proxy command: exec /usr/local/bin/krssh github.com 22
debug1: permanently_drop_suid: 501
debug1: identity file /Users/coinkudi/.ssh/id_krypton type 1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_krypton-cert type -1
debug1: identity file /Users/coinkudi/.ssh/id_ed25519 type 4
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_ed25519-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_rsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /Users/coinkudi/.ssh/id_dsa-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_7.4
ssh_exchange_identification: Connection closed by remote host

My ~/.ssh directory

-rwx------   1 coinkudi  staff  1177 May 24 23:23 config
-rw-------   1 coinkudi  staff   419 May 25 01:07 id_ed25519
-rw-r--r--   1 coinkudi  staff   104 May 25 01:07 id_ed25519.pub
-rwx------   1 coinkudi  staff   574 May 31 10:16 id_krypton.pub

it has been days of googling and can't seem to resolve this issue.

I use MacOS 10.12.6

WonderWoofy commented 5 years ago

I've just run into this issue too, and I'm not entirely sure why. Oddly it only breaks my access to a certain handful of server resources, but not others. So I at least have a way to jump through another system as kind of an accidental bastion host.

If I disable the additions to my ~/.ssh/config that were added by kr, then it works normally. So I'm assuming there are specific key, kex, MAC, or other similar algorithm options built into the krssh binary and are used by default that include something deprecated by upstream OpenSSH. I'm currently building a new kr package for myself to see if maybe the latest release tag fixes it...