Ubuntu – SSH – Software caused connection abort for single login

puttysshUbuntu

I'll give a full background here, not sure how relevant some of it will be but it can't hurt…

So I had a VM running ubuntu server 13.10 that I recently upgraded 14.04 LTS.

After the upgrade, it appeared that I was unable to ssh into the machine. Login via the local console was fine, and ssh out was okay.

After some fiddling, I discovered that ssh only fails for one particular username. Using a second username proved successful.

I have tried multiple ssh clients and each time I receive the same error for that one user:

Software caused connection abort.

Now, from what I gather this comes from Windows itself, so I ask you, what possible reasons for this could there be?

PuTTY logs show the public key authentication succeeding, and then suddenly for no apparent reason, disconnecting:

Event Log: Access granted
Outgoing packet #0x8, type 90 / 0x5a (SSH2_MSG_CHANNEL_OPEN)
...
Outgoing raw data
...
Event Log: Network error: Software caused connection abort

I've tried this with multiple ssh clients, from multiple Windows machines, across three different sites, and the result is always the same. One user works fine, the other fails, so that would suggest something wrong with the Ubuntu box no?

UPDATE

So, following Chirag64's suggestion, ssh 127.0.0.1 connects fine, however ssh <baduser>@127.0.0.1 fails with the same error message.

I've checked group memberships, authentication and user shell, which all match up with the working user.

su baduser allows me to change to that user, and make outgoing ssh connections however, an ssh connection to loopback using current user fails.

It just seems to be incoming connections to that one user for some reason or another.

Best Answer

"Software caused connection abort" means that the server is dropping the connection, so it probably wouldn't matter which client program you're using.

The first thing to check is filesystem permissions for the user on the Ubuntu server. Check the permissions for the user's home directory, the user's .ssh directory, and the files within the .ssh directory. Compare them to the same permissions for user that is working. The OpenSSH server is pretty picky about these permissions, and in some configurations it won't let a user connect if it's possible that someone else modified the user's files.

If that doesn't solve the problem, and you have superuser access to the Ubuntu server, you could run a debug instance of the SSH daemon and see what it logs when it gets a connection for this user:

/path/to/sshd -ddd -p 10022

This will run a copy of sshd listening to port 10022. It won't put itself in the background. When you connect to it with your client, it'll print debugging information to your terminal. Hopefully, the debugging information will give you a better idea of why it's dropping the connection.

If you still can't figure out the problem, you could try running sshd through strace:

strace -f /path/to/sshd -ddd -p 10022

strace will print the system calls being performed by the sshd program. The last few system calls executed by sshd before it drops the connection might give you an idea what it was checking at the time.

Windows XP or prior Operating system only:

I wrote this answer 9 years ago for Windows XP, Putty software is 21 years old and so this answer is useful for historical purposes. Window's current smartphone-based Zune-OS for Desktop has broken Putty at the network level, in pursuit of irritating away all points of entry or exit that are not part of the pay-for-play Azure Vendor tool stack.

Putty has a feature which attempts to fix this problem:

Network Error: Software caused connection abort

Start Putty
Load your connection settings if you have them saved
Click on “Connection”
On the section that says "Sending of null packets to keep session active", Changed it to 5 seconds. 300 seconds may be better if network outages are your problem, read below for details.

enter image description here

How keepalives to prevent disconnection with Putty:

Some network routers and firewalls need to keep track of all connections through them. Usually, these firewalls will assume a connection is dead if no data is transferred in either direction after a certain time interval. This can cause PuTTY sessions to be unexpectedly closed by the firewall if no traffic is seen in the session for some time.

The keepalive option (‘Seconds between keepalives’) allows you to configure PuTTY to send data through the session at regular intervals, in a way that does not disrupt the actual terminal session. If you find your firewall is cutting idle connections off, you can try entering a non-zero value in this field. The value is measured in seconds; so, for example, if your firewall cuts connections off after ten minutes then you might want to enter 300 seconds (5 minutes) in the box.

Reduce the problem using putty autologin and "screen" tool

Putty cannot handle a crappy wifi that loses connectivity for minutes at a time. A work around is to use autologin and screen.

It is a non trivial problem for putty to re synchronize your terminal after a minute long loss in internet connection. You run risks of man in the middle attacks during an outage. You would have to re-authenticate yourself anyway to make sure. Putty doesn't impose that on you, it just drops you.

So use autologin so putty can auto login on your behalf.

Generate a private key with the puttygen tool on the computer you are putty with.
Paste the public key in your /home/youruser/.ssh/authorized_keys on the server side, on the server that you are using putty go login to.
Make the private key accessible to putty in the putty settings Connection->SSH->Auth
Add the private key by specifying the private key file under: "Private key file for authentication".
Save the putty connection settings.

Then you would be able to double click your connection through putty, and it should take you right in to the terminal without typing username/password.

So now you can hook a login to putty on that connection with a keyboard combination like F6. So when the wifi goes bad and you get dropped. You mash down F6 and you're back logged in.

BUT you still lose the state of your terminal! How to fix that? Use the "screen" program. Make a new screen by typing 'screen'. A new screen is created.

When you get kicked out and auto login, you can reattach to your screen. Here is a tutorial on how to do that: http://www.tecmint.com/screen-command-examples-to-manage-linux-terminals/

It's a hassle to type in screen and reconnect every time you get dropped. So you can write a script that will "auto bring you back to the last available screen" to make it transparent.

So then when the putty terminal freezes. It looks like this: You make a snort of contempt, mash down Alt+F4 to close putty, Mash down F6. And in 6 seconds you are back right where you left off.

Even better solution, in theory

In theory you could script out this entire above process, so the terminal detects when it has been dropped, and does all the above steps for you on restoration of the internet connection. If anyone knows a program that does this automatically let me know. It would be neat.

Sources:

http://the.earth.li/~sgtatham/putty/0.58/htmldoc/Chapter4.html#config-keepalive

http://rafaelwolf.com/?p=516

Putty error “Network error:Software caused connection abort”

I think your connection is being blocked. It is probably intentional IT policy to block outbound ssh.

Source: Your comment

"Got it..my office network is blocking the connection. I am able to connect with my home net. Not sure what is the problem with my office network! – karan ratnaparkhi Aug 1 '15 at 4:51"

Best Answer

Related Solutions

Linux – PuTTY Network Error: Software caused connection abort

Windows XP or prior Operating system only:

Putty error “Network error:Software caused connection abort”

Related Question