ubuntu 22.04 virtualmin 7.3
ssh connections keep getting dropped regardless of which user logs in
in webmin > servers > ssh server > networking … when you click the help ‘?’ it says…
Idle timeout
If this is set and there has been nothing sent by the client or server during the period set, the client will be disconnected.
however there is no timeout option
in sshd_config i have…
ClientAliveInterval 600
ClientAliveCountMax 2
however the connection still keeps dropping after a very short period of inactivity - this happened both with the default config (firewalld + fail2ban) and with its replacement, csf
also when i connect from my PC’s file manager (Dolphin, sftp://user@domain.tld) while tailing the log (sudo tail -f /var/log/auth.log) at the same time, the ssh connection drops and Dolphin won’t connect on the first try…
redacted log...
$ sudo tail -f /var/log/auth.log
[sudo] password for user:
Jan 5 04:04:57 host saslauthd[148659]: pam_unix(smtp:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=
Jan 5 04:05:00 host saslauthd[148659]: DEBUG: auth_pam: pam_authenticate failed: Authentication failure
Jan 5 04:05:00 host saslauthd[148659]: : auth failure: [user=barbara@example.com] [service=smtp] [realm=example.com] [mech=pam] [reason=PAM auth error]
Jan 5 04:05:01 host CRON[184799]: pam_unix(cron:session): session opened for user root(uid=0) by (uid=0)
Jan 5 04:05:01 host CRON[184799]: pam_unix(cron:session): session closed for user root
Jan 5 04:06:30 host saslauthd[148660]: pam_unix(smtp:auth): check pass; user unknown
Jan 5 04:06:30 host saslauthd[148660]: pam_unix(smtp:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=
Jan 5 04:06:32 host saslauthd[148660]: DEBUG: auth_pam: pam_authenticate failed: Authentication failure
Jan 5 04:06:32 host saslauthd[148660]: : auth failure: [user=barbie@example.com] [service=smtp] [realm=example.com] [mech=pam] [reason=PAM auth error]
Jan 5 04:06:33 host sudo: user : TTY=pts/0 ; PWD=/home/user ; USER=root ; COMMAND=/usr/bin/tail -f /var/log/auth.log
Jan 5 04:06:33 host sudo: pam_unix(sudo:session): session opened for user root(uid=0) by user(uid=1005)
Jan 5 04:06:59 host sshd[182311]: pam_unix(sshd:session): session closed for user root
Jan 5 04:06:59 host systemd-logind[620]: Session 1007 logged out. Waiting for processes to exit.
Jan 5 04:06:59 host systemd-logind[620]: Removed session 1007.
Jan 5 04:06:59 host sshd[184959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.15.18.66 user=user
Jan 5 04:06:59 host sshd[184961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.15.18.66 user=user
Connection to <ip> closed by remote host.
Connection to <ip> closed.
navigating the directory structure (Dolphin) is a hit or miss deal - sometimes it works, sometime i get an “internal error” message when i enter a directory - sometimes i can back out and enter the same directory and it works, or not
so, a few niggles with ssh that i need to get ironed out for sure
also another minor documentation issue...
webmin > servers > ssh server > authentication > click the help '?' it says...Allow RSA authentication?
there is no RSA option,