Vanco, Don wrote:
> I've got a RHEL 5U1 server I access via SSH (and NoMachine NX over SSH)
> by IP address over a corp. VPN. It's addressed via DHCP. No firewall,
> SELinux disabled.
>
> I keep getting disconnected with innocuous client-side messages of
> "network connection" issues. If I try to connect again immediately, I
> get a warning that the RSA hash has changed and cannot log in (get login
> prompt, but auth fails). If I wait a few moments before trying to
> reconnect, I have no issues.
>
> I see nothing in any of the logs. The "secure" log shows warnings about
> reverse look-ups on my client, but that's it.
>
> Does this sound like another server stepping on my IP? I see nothing to
> support that... so I'm wondering if this odd RSA issue has something to
> do with the NoMachine daemon resetting itself in some fashion... or if
> it's some kind of SSH bug.
>
> TIA
> Don
>

NoMachine (when configured to use pam) just uses the underlying sshd to
connect. So connecting via ssh and via NoMachine is the same thing. If
you are connecting to the server and the RSA hash has changed, then you
are being connected to an sshd with a different key. I'd look for load
balancers and/or proxy servers between you and the server. You can also
capture the different RSA hash and compare it against keys that you have
for other machines at your work.

Hugh

_______________________________________________
rhelv5-list mailing list
rhelv5-list@(protected)
https://www.redhat.com/mailman/listinfo/rhelv5-list