I upgraded from 12.26 to 12.27 this morning. Now, I can't connect to any of my registered sftp sites. The interaction reads "[IP address] Initialised HMAC-SHA-256 server -> client MAC algorithm" but nothing happens. HELP!
Is that the complete log or are there more details in it?
That's not from the log. It's what I see on screen when the connexion is attempted. Where can I find a more complete log?
Ouverture de connexion [ip]:22
Server version: SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Server also has ssh-ed25519/ecdsa-sha2-nistp256 host keys, but we don't know any of them
Host key fingerprint is:
ssh-rsa 3072 da:25:b3:f0:5a:7f:aa:b9:85:a2:17:13:12:51:e0:59
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Using username "[username]".
I found one server where I can connect. The log reads as follows:
Ouverture de connexion [ip]:22100
Server version: SSH-2.0-OpenSSH_5.3
We believe remote version has SSH-2 channel request bug
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Server supports delayed compression; will try this later
Doing Diffie-Hellman group exchange
Doing Diffie-Hellman key exchange with hash SHA-256
Server also has ssh-dss host key, but we don't know it
Host key fingerprint is:
ssh-rsa 2048 b1:34:65:f9:bd:a8:36:03:30:93:12:a4:fc:84:3a:3f
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Using username "[user]".
Sent password
Access granted
Initiating key re-exchange (enabling delayed compression)
Opening session as main channel
Server supports delayed compression; will try this later
Doing Diffie-Hellman group exchange
Doing Diffie-Hellman key exchange with hash SHA-256
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Listing Directory
On the site that doesn't connect, are you using a password on its own, or an SSH key file?
If an SSH key file, does it work with the latest versions of PuTTY and Pageant, if you're able to test with those?
Clearing and re-setting the key file path also helped someone recently with a similar issue:
I am using usernames and passwords on all my connections. No SSH keyfile.
Ah OK, that rules that idea out!
Is there any way we could be given a temporary login to the same server to test with? (Understandable if not possible, of course!)
Have you checked that another client is still able to connect to the same server? (Latest version of PuTTY would be the best test, as that's the most similar to what Opus will use.)
I use Solar-PuTTY and I can connect with ease. I can create an account for you. Is this thread confidential or should I provide you with the credentials using some other means?
If you click on Leo's profile pic, you can click "Message". That will allow you to write a private message to him that no one else can read. Picture below for illustration.
Thank you, DesertDwarf.
Many thanks! I can confirm the issue. We'll investigate further.
We've found the problem and updated the 12.27 installer to include a fix.
Thank you!
1 Like
I'm on 12.27 but have difficulties with ONE of my sftp sites. I log in with SSH port 22 and stored password (like all my other sites) but I get permission denied on the /home folder with this one on the same ISP. Have no issues with FileZilla. Here's the log.
Connection closed
Opening Connection covinasunriserotary.com:22
Server version: SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Server also has ssh-ed25519/ecdsa-sha2-nistp256 host keys, but we don't know any of them
Host key fingerprint is:
ssh-rsa 2048 16:1f:31:ae:f4:2f:4b:bf:fc:f3:08:96:5d:b9:f3:0d
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Using username "XXXXXXXXXXXXXX".
Sent password
Access granted
Initiating key re-exchange (enabling delayed compression)
Opening session as main channel
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Listing Directory
SSH: List complete 11 files.
Opening Connection covinasunriserotary.com:22
Server version: SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Server also has ssh-ed25519/ecdsa-sha2-nistp256 host keys, but we don't know any of them
Host key fingerprint is:
ssh-rsa 2048 16:1f:31:ae:f4:2f:4b:bf:fc:f3:08:96:5d:b9:f3:0d
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Using username "XXXXXXXXXXXXXXXXX".
Sent password
Access granted
Initiating key re-exchange (enabling delayed compression)
Opening session as main channel
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Directory /home: permission denied
Connection closed
What does the FileZilla log show? Is it trying to list /home as well, or a different folder?
Did this work before 12.27?
FileZilla logs into the home folder, with all the folders listed under it and accessible with no errors. I think this issue may have existed before 12.27. And I was wrong, here's a log from another site that uses sftp that still show the permission denied message (and I get the opus popup message as well). Let me know if you want a pm with login info.
Opening Connection grandtirecovina.com:22
Server version: SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Server also has ssh-ed25519/ecdsa-sha2-nistp256 host keys, but we don't know any of them
Host key fingerprint is:
ssh-rsa 2048 7c:f1:6e:7f:82:55:0d:62:89:3b:38:42:db:9e:b7:c4
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Using username "XXXXXXXXXXX".
Sent password
Access granted
Initiating key re-exchange (enabling delayed compression)
Opening session as main channel
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Listing Directory
SSH: List complete 20 files.
Opening Connection grandtirecovina.com:22
SSH: Directory /home: permission denied
Server version: SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Server also has ssh-ed25519/ecdsa-sha2-nistp256 host keys, but we don't know any of them
Host key fingerprint is:
ssh-rsa 2048 7c:f1:6e:7f:82:55:0d:62:89:3b:38:42:db:9e:b7:c4
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Using username "XXXXXXXXXXXXX".
Sent password
Access granted
Initiating key re-exchange (enabling delayed compression)
Opening session as main channel
Server supports delayed compression; will try this later
Doing ECDH key exchange with curve Curve25519 and hash SHA-256
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Listing Directory
SSH: List complete 11 files.
Connection closed
If you're OK with that, yes please! We can then try to diagnose it from there.
I checked with the two sites and both connect OK.
The /home directory cannot be accessed if I try to go up to it, but if you don't specify an initial directory you end up in the user's directory (one level under /home) and that works fine.
Looking at the FileZilla logs, it doesn't look like it was changing directory from the initial one, so you were probably just not testing the same thing in both programs. If I connect to the sites using FileZilla and then try to go up to the /home directory, I get exactly the same Permission Denied error from the server in FileZilla.
If the Initial Directory field for the sites in Opus is set to /home, just remove that and everything should work fine.