ssh fails with an error "sshd[xxxx]: ssh_dispatch_run_fatal: Connection from x.x.x.x port xxxxx: DH GEX group out of range [preauth]"

Solution Verified - Updated -

Issue

  • SSH connection attempt from a Windows client to RHEL-8 fails with the following sshd error:

    sshd[31281]: ssh_dispatch_run_fatal: Connection from x.x.x.x port 52266: DH GEX group out of range [preauth]

  • Error on the Windows client side :

    [sshexec] Connecting to example.com:22
[sshexec] Connecting to example.com port 22
[sshexec] Connection established
[sshexec] Remote version string: SSH-2.0-OpenSSH_8.0
[sshexec] Local version string: SSH-2.0-JSCH-0.1.39
[sshexec] CheckCiphers: aes256-cbc,aes192-cbc,aes128-cbc
[sshexec] SSH_MSG_KEXINIT sent
[sshexec] SSH_MSG_KEXINIT received
[sshexec] kex: server->client aes128-cbc hmac-sha1 none
[sshexec] kex: client->server aes128-cbc hmac-sha1 none
[sshexec] SSH_MSG_KEX_DH_GEX_REQUEST(1024<1024<1024) sent
[sshexec] expecting SSH_MSG_KEX_DH_GEX_GROUP
[sshexec] Disconnecting from example.com port 22
[sshexec] Caught exception: Session.connect: java.io.IOException: End of IO Stream Read

Environment

  • Red Hat Enterprise Linux 8

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content