Обсуждение: CVS access on pgFoundry broken (DSA key changed??)?
Hi guys, I'm getting the following when trying to logon anonymously to the pgFoundry CVS: cvs -z9 -d :pserver:anonymous@cvs.pgfoundry.org:/cvsroot/pginstaller login Logging in to :pserver:anonymous@cvs.pgfoundry.org:2401:/cvsroot/pginstaller cvs [login aborted]: initgroups failed: Invalid argument So, Magnus added me to the project as a developer: cvs -z9 -d :pserver:dpage@cvs.pgfoundry.org:/cvsroot/pginstaller login Logging in to :pserver:dpage@cvs.pgfoundry.org:2401:/cvsroot/pginstaller Fatal error, aborting. cvs [login aborted]: dpage: no such user And then tried it himself: cvs update: warning: unrecognized response `The authenticity of host 'cvs.pgfoundry.org (200.46.204.130)' can't be established.' from cvs server cvs update: warning: unrecognized response `DSA key fingerprint is cb:08:ee:77:f4:01:88:14:41:2a:bf:a9:49:3b:4b:65.' from cvs server If the key has changed it should probably be posted as news. If not, someone's hijacked the server!! Regards, Dave
Did you wait about half a day for the cron to update everything? Gavin Dave Page wrote: >Hi guys, > >I'm getting the following when trying to logon anonymously to the >pgFoundry CVS: > >cvs -z9 -d :pserver:anonymous@cvs.pgfoundry.org:/cvsroot/pginstaller >login >Logging in to >:pserver:anonymous@cvs.pgfoundry.org:2401:/cvsroot/pginstaller >cvs [login aborted]: initgroups failed: Invalid argument > >So, Magnus added me to the project as a developer: > >cvs -z9 -d :pserver:dpage@cvs.pgfoundry.org:/cvsroot/pginstaller login >Logging in to :pserver:dpage@cvs.pgfoundry.org:2401:/cvsroot/pginstaller >Fatal error, aborting. >cvs [login aborted]: dpage: no such user > >And then tried it himself: > >cvs update: warning: unrecognized response `The authenticity of host >'cvs.pgfoundry.org (200.46.204.130)' can't be established.' from cvs >server >cvs update: warning: unrecognized response `DSA key fingerprint is >cb:08:ee:77:f4:01:88:14:41:2a:bf:a9:49:3b:4b:65.' from cvs server > >If the key has changed it should probably be posted as news. If not, >someone's hijacked the server!! > >Regards, Dave > >---------------------------(end of broadcast)--------------------------- >TIP 1: subscribe and unsubscribe commands go to majordomo@postgresql.org > >
> -----Original Message----- > From: Gavin M. Roy [mailto:gmr@ehpg.net] > Sent: 11 June 2004 22:15 > To: Dave Page > Cc: pgsql-www@postgresql.org; Magnus Hagander > Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA > key changed??)? > > Did you wait about half a day for the cron to update everything? > Not for anonymous access. For authenticated access I must admit that I didn't notice the requirement for SSL until after I emailed, but then nothing told me to wait 12 hours to gain access either (unless Magnus got such a message, but he didn't say he did). On Gborg this was instant... Regards, Dave.
I can answer that one - nope, he didn't. Also - re: the key. Sorry, that was my fault. Turns out my install accidentally switched to using the wrong version of the SSH protocol and thuse used DSA instead of the RSA-key that I had stored. Starting cvs from the correct environment fixed the issue. The docs says I need to do SSH1, but it seems the server supports SSH2. Can someone confirm which is correct? //Magnus >-----Original Message----- >From: Gavin M. Roy [mailto:gmr@ehpg.net] >Sent: den 11 juni 2004 23:15 >To: Dave Page >Cc: pgsql-www@postgresql.org; Magnus Hagander >Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA >key changed??)? > > >Did you wait about half a day for the cron to update everything? > >Gavin > >Dave Page wrote: > >>Hi guys, >> >>I'm getting the following when trying to logon anonymously to the >>pgFoundry CVS: >> >>cvs -z9 -d :pserver:anonymous@cvs.pgfoundry.org:/cvsroot/pginstaller >>login >>Logging in to >>:pserver:anonymous@cvs.pgfoundry.org:2401:/cvsroot/pginstaller >>cvs [login aborted]: initgroups failed: Invalid argument >> >>So, Magnus added me to the project as a developer: >> >>cvs -z9 -d >:pserver:dpage@cvs.pgfoundry.org:/cvsroot/pginstaller login >>Logging in to >:pserver:dpage@cvs.pgfoundry.org:2401:/cvsroot/pginstaller >>Fatal error, aborting. >>cvs [login aborted]: dpage: no such user >> >>And then tried it himself: >> >>cvs update: warning: unrecognized response `The authenticity of host >>'cvs.pgfoundry.org (200.46.204.130)' can't be established.' from cvs >>server >>cvs update: warning: unrecognized response `DSA key fingerprint is >>cb:08:ee:77:f4:01:88:14:41:2a:bf:a9:49:3b:4b:65.' from cvs server >> >>If the key has changed it should probably be posted as news. If not, >>someone's hijacked the server!! >> >>Regards, Dave >> >>---------------------------(end of >broadcast)--------------------------- >>TIP 1: subscribe and unsubscribe commands go to >majordomo@postgresql.org >> >> > >
maybe the pserver is down for the anonymous stuff. Any user related stuff with cvs is on a cron job. We should probably mention that on the site :) (Note that I think it's silly but the sourceforge/gforge guys probably had a good reason for making it work that way) Gavin Magnus Hagander wrote: >I can answer that one - nope, he didn't. > >Also - re: the key. Sorry, that was my fault. Turns out my install >accidentally switched to using the wrong version of the SSH protocol and >thuse used DSA instead of the RSA-key that I had stored. Starting cvs >from the correct environment fixed the issue. > >The docs says I need to do SSH1, but it seems the server supports SSH2. >Can someone confirm which is correct? > >//Magnus > > > > >>-----Original Message----- >>From: Gavin M. Roy [mailto:gmr@ehpg.net] >>Sent: den 11 juni 2004 23:15 >>To: Dave Page >>Cc: pgsql-www@postgresql.org; Magnus Hagander >>Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA >>key changed??)? >> >> >>Did you wait about half a day for the cron to update everything? >> >>Gavin >> >>Dave Page wrote: >> >> >> >>>Hi guys, >>> >>>I'm getting the following when trying to logon anonymously to the >>>pgFoundry CVS: >>> >>>cvs -z9 -d :pserver:anonymous@cvs.pgfoundry.org:/cvsroot/pginstaller >>>login >>>Logging in to >>>:pserver:anonymous@cvs.pgfoundry.org:2401:/cvsroot/pginstaller >>>cvs [login aborted]: initgroups failed: Invalid argument >>> >>>So, Magnus added me to the project as a developer: >>> >>>cvs -z9 -d >>> >>> >>:pserver:dpage@cvs.pgfoundry.org:/cvsroot/pginstaller login >> >> >>>Logging in to >>> >>> >>:pserver:dpage@cvs.pgfoundry.org:2401:/cvsroot/pginstaller >> >> >>>Fatal error, aborting. >>>cvs [login aborted]: dpage: no such user >>> >>>And then tried it himself: >>> >>>cvs update: warning: unrecognized response `The authenticity of host >>>'cvs.pgfoundry.org (200.46.204.130)' can't be established.' from cvs >>>server >>>cvs update: warning: unrecognized response `DSA key fingerprint is >>>cb:08:ee:77:f4:01:88:14:41:2a:bf:a9:49:3b:4b:65.' from cvs server >>> >>>If the key has changed it should probably be posted as news. If not, >>>someone's hijacked the server!! >>> >>>Regards, Dave >>> >>>---------------------------(end of >>> >>> >>broadcast)--------------------------- >> >> >>>TIP 1: subscribe and unsubscribe commands go to >>> >>> >>majordomo@postgresql.org >> >> >>> >>> >>> >>> >> >> > >---------------------------(end of broadcast)--------------------------- >TIP 1: subscribe and unsubscribe commands go to majordomo@postgresql.org > >
> -----Original Message----- > From: Gavin M. Roy [mailto:gmr@ehpg.net] > Sent: 11 June 2004 23:15 > To: Magnus Hagander > Cc: Dave Page; pgsql-www@postgresql.org > Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA > key changed??)? > > maybe the pserver is down for the anonymous stuff. OK, anyone around with root to restart it? That's about the only one of our VMs I don't have access to. > Any user > related stuff with cvs is on a cron job. We should probably > mention that on the site :) (Note that I think it's silly > but the sourceforge/gforge guys probably had a good reason > for making it work that way) On that subject, is ssh really required for commit access? It does make setting things up a touch more complex, especially in a GUI. Regards, Dave.
On Fri, 11 Jun 2004, Dave Page wrote: > > >> -----Original Message----- >> From: Gavin M. Roy [mailto:gmr@ehpg.net] >> Sent: 11 June 2004 22:15 >> To: Dave Page >> Cc: pgsql-www@postgresql.org; Magnus Hagander >> Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA >> key changed??)? >> >> Did you wait about half a day for the cron to update everything? >> > > Not for anonymous access. For authenticated access I must admit that I > didn't notice the requirement for SSL until after I emailed, but then > nothing told me to wait 12 hours to gain access either (unless Magnus > got such a message, but he didn't say he did). On Gborg this was > instant... I don't believe its a half day on gforge either, but, for now, the cron does only run once an hour (normally its every 12 minutes) ... so there is a slight delay ... ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email: scrappy@hub.org Yahoo!: yscrappy ICQ: 7615664
On Fri, 11 Jun 2004, Dave Page wrote: > > >> -----Original Message----- >> From: Gavin M. Roy [mailto:gmr@ehpg.net] >> Sent: 11 June 2004 23:15 >> To: Magnus Hagander >> Cc: Dave Page; pgsql-www@postgresql.org >> Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA >> key changed??)? >> >> maybe the pserver is down for the anonymous stuff. > > OK, anyone around with root to restart it? That's about the only one of > our VMs I don't have access to. k, I got root, but what do you want me to restart? :) inetd is running, and cvs is enabled ... ? btw, you do have an account on pgfoundry, and you do have sudo access to root form your dpage account, in case you ever need it ... ---- Marc G. Fournier Hub.Org Networking Services (http://www.hub.org) Email: scrappy@hub.org Yahoo!: yscrappy ICQ: 7615664
> -----Original Message----- > From: Marc G. Fournier [mailto:scrappy@postgresql.org] > Sent: 12 June 2004 00:28 > To: Dave Page > Cc: Gavin M. Roy; Magnus Hagander; pgsql-www@postgresql.org > Subject: Re: [pgsql-www] CVS access on pgFoundry broken (DSA > key changed??)? > > > k, I got root, but what do you want me to restart? :) inetd > is running, and cvs is enabled ... ? Gavin suggested it was down, and seeing as non-anonymous users access it via ssh it kinda made sense that the server might not be running. Mind you, the error doesn't suggest such an obvious problem: cvs -z9 -d :pserver:anonymous@cvs.pgfoundry.org:/cvsroot/pginstaller login Logging in to :pserver:anonymous@cvs.pgfoundry.org:2401:/cvsroot/pginstaller cvs [login aborted]: initgroups failed: Invalid argument I can now login as dpage using pserver btw. > btw, you do have an account on pgfoundry, and you do have > sudo access to root form your dpage account, in case you ever > need it ... OK, thanks. Regards, Dave.