Open badgerdog opened 1 year ago
mauringo
commented
1 year ago i updated the app, if you install the app with --devmode it works. there are no way to access .ssh/known_hosts legally in snap confinement.
Nope, also the ssh keys can be read. Anyway if intsalled with --devmode the apps is just perfect
badgerdog
commented
1 year ago Great, thanks for listening and doing the update
On Sun, Jul 23, 2023, 12:12 Mauro @.***> wrote:
i updated the app, if you install the app with --devmode it works. there are no way to access .ssh/known_hosts legally in snap confinement
— Reply to this email directly, view it on GitHub https://github.com/mauringo/asbru-snap-porting/issues/1#issuecomment-1646972361, or unsubscribe https://github.com/notifications/unsubscribe-auth/AFNSEP6WJ5ODRSY5SS7WZLLXRWOTHANCNFSM6AAAAAAXVH33RU . You are receiving this because you authored the thread.Message ID: @.***>
Asbru not correctly reading the /etc/ssh/ssh_conf or ssh or the he /etc/ssh/ssh_conf.d/my,conf. Here is the output when try to connect to remote ssh server with legacy sha1 (not that the sha1 key exchange has been permitted in the ssh_conf file:"GLib-LOG : setenv()/putenv() are not thread-safe and should not be used after threads are created at /snap/asbru/15/usr/lib/x86_64-linux-gnu/perl5/5.30/Glib/Object/Introspection.pm line 67. GLib-LOG : setenv()/putenv() are not thread-safe and should not be used after threads are created at /snap/asbru/15/usr/lib/x86_64-linux-gnu/perl5/5.30/Glib/Object/Introspection.pm line 67. GLib-LOG : Failed to set thread scheduler attributes: Operation not permitted at /snap/asbru/15/usr/lib/x86_64-linux-gnu/perl5/5.30/Glib/Object/Introspection.pm line 110. Gtk-Message: 18:15:44.610: Failed to load module "xapp-gtk3-module" Gtk-Message: 18:15:44.610: Not loading module "atk-bridge": The functionality is provided by GTK natively. Please try to not load it. GLib-LOG : unsetenv() is not thread-safe and should not be used after threads are created at /snap/asbru/15/usr/share/perl5/Gtk3.pm line 555. GLib-LOG : posix_spawn avoided (fd close requested) at /snap/asbru/15/usr/share/perl5/Gtk3.pm line 555. GLib-LOG : posix_spawn avoided (fd close requested) at /snap/asbru/15/usr/share/perl5/Gtk3.pm line 555. readline() on closed filehandle SSHC at /snap/asbru/15/bin/lib/asbru_conn line 773. Unable to negotiate with 192.168.0.11 port 22: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1"
If I remote into this same ssh server via the cli, everything works fine. I have Asbru installe with dpkg on a Linux Mint machine and it work just fine.
The second problem is that Asbru can't write to the users ~/.ssh/known_hosts file, here is the output when successfully connecting to a different ssh server:
"CONNECTING WITH Linux_Protector (Wed May 3 18:18:43 2023)
GLib-LOG : setenv()/putenv() are not thread-safe and should not be used after threads are created at /snap/asbru/15/usr/lib/x86_64-linux-gnu/perl5/5.30/Glib/Object/Introspection.pm line 67. GLib-LOG : setenv()/putenv() are not thread-safe and should not be used after threads are created at /snap/asbru/15/usr/lib/x86_64-linux-gnu/perl5/5.30/Glib/Object/Introspection.pm line 67. GLib-LOG : Failed to set thread scheduler attributes: Operation not permitted at /snap/asbru/15/usr/lib/x86_64-linux-gnu/perl5/5.30/Glib/Object/Introspection.pm line 110. Gtk-Message: 18:18:43.533: Failed to load module "xapp-gtk3-module" Gtk-Message: 18:18:43.534: Not loading module "atk-bridge": The functionality is provided by GTK natively. Please try to not load it. GLib-LOG : unsetenv() is not thread-safe and should not be used after threads are created at /snap/asbru/15/usr/share/perl5/Gtk3.pm line 555. GLib-LOG : posix_spawn avoided (fd close requested) at /snap/asbru/15/usr/share/perl5/Gtk3.pm line 555. GLib-LOG : posix_spawn avoided (fd close requested) at /snap/asbru/15/usr/share/perl5/Gtk3.pm line 555. readline() on closed filehandle SSHC at /snap/asbru/15/bin/lib/asbru_conn line 773. The authenticity of host '192.168.0.15 (192.168.0.15)' can't be established. ECDSA key fingerprint is SHA256:Hiz6Ir3j7uZ6SkIZ8bVYWOpzyo+Gj8s14dw9NhBmPHY. Are you sure you want to continue connecting (yes/no/[fingerprint])? yes Failed to add the host to the list of known hosts (/home/perryb/.ssh/known_hosts). root@192.168.0.15's password: "
And of course, I'm running the latest snap version of Asbru in Lunar Lobster
Please fix, it's the only thing keeping me from moving off of Linux Mint