kdesvn tries to login as root if using svn+ssh

[jani-matti-hatinen@…]

If the working copy uses an svn+ssh URL without an explicitly set remote username, kdesvn tries to login to the remote system as root, instead of logging in as the current user, like it should. (and like the svn commandline tool correctly does)

If the remote system is running denyhosts, or some other ssh brute force detection tool, this bug usually causes the local IP address to be blacklisted and will thus prevent the user from gaining any kind of ssh access to the machine.

[jani-matti.hatinen@…]

A small correction. It seems that kdesvn doesn't actually try to login as root, but for some reason the ssh login fails every single time anyway, and results with the local IP in ending up in the remote system's blacklist.

Here's what the remote system's auth.log shows: Dec 18 07:23:28 spiff sshd[9020]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=a228-14.24online.fi user=jani-matti Dec 18 07:23:30 spiff sshd[9018]: error: PAM: Authentication failure for jani-matti from a228-14.24online.fi Dec 18 07:23:30 spiff sshd[9021]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=a228-14.24online.fi user=jani-matti Dec 18 07:23:32 spiff sshd[9018]: error: PAM: Authentication failure for jani-matti from a228-14.24online.fi Dec 18 07:23:32 spiff sshd[9022]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=a228-14.24online.fi user=jani-matti Dec 18 07:23:33 spiff sshd[9025]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=a228-14.24online.fi user=jani-matti Dec 18 07:23:35 spiff sshd[9018]: error: PAM: Authentication failure for jani-matti from a228-14.24online.fi Dec 18 07:23:36 spiff sshd[9023]: error: PAM: Authentication failure for jani-matti from a228-14.24online.fi Dec 18 07:23:36 spiff sshd[9026]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=a228-14.24online.fi user=jani-matti Dec 18 07:23:38 spiff sshd[9023]: error: PAM: Authentication failure for jani-matti from a228-14.24online.fi Dec 18 07:23:38 spiff sshd[9027]: (pam_unix) authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=a228-14.24online.fi user=jani-matti Dec 18 07:23:40 spiff sshd[9023]: error: PAM: Authentication failure for jani-matti from a228-14.24online.fi

Also, kdesvn never offers a password prompt to fill in the password. If I use public key authentication, kdesvn works.

[alwin]

Here (and on other systems) it works perfect. Sometimes subversion itselfs tries different usernames before asking for a password and so clients runs into blocks.

Next: You may switchoff background threads like filling logcache, checking for updates and so on when no key authentication. Without key authentication but with simple (and unsecure) password authentication them may ask for passwords in background. This is a effect of ssh, I can do nothing there. (Of course, if someone has an idea how to get the ssh password prompt into a new window....)

Third you may check if you have a askpass installed and activated. Sometimes kdesvn doesn't switch to its own askpass dialog.