| delorie.com/archives/browse.cgi | search |
| Mailing-List: | contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm |
| List-Subscribe: | <mailto:cygwin-subscribe AT sources DOT redhat DOT com> |
| List-Archive: | <http://sources.redhat.com/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT sources DOT redhat DOT com> |
| List-Help: | <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs> |
| Sender: | cygwin-owner AT sources DOT redhat DOT com |
| Delivered-To: | mailing list cygwin AT sources DOT redhat DOT com |
| From: | "Erdely, Michael" <mike AT erdelynet DOT com> |
| To: | "Cygwin List" <cygwin AT sources DOT redhat DOT com> |
| Subject: | RE: SSHD setup |
| Date: | Tue, 21 Nov 2000 12:09:33 -0500 |
| Message-ID: | <HLEFLHBNJIAFNBEFLEANOEECCGAA.mike@erdelynet.com> |
| MIME-Version: | 1.0 |
| X-Priority: | 3 (Normal) |
| X-MSMail-Priority: | Normal |
| X-Mailer: | Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) |
| X-MimeOLE: | Produced By Microsoft MimeOLE V5.00.3018.1300 |
| Importance: | Normal |
| In-Reply-To: | <5.0.0.25.2.20001121093042.02df5500@mail.prefres.com> |
They (/etc/ssh_host*_key need to be owned by the account starting the service (either SYSTEM or specified user). Since you're using 2.3.0p1, make sure that you have created an /etc/primes file (empty, world readable). Also, there is no need to have an ssh* files in /usr/local/etc. Than can/should go into /etc. Edit your /etc/sshd_config to make sure that your HostKey line looks like this: "HostKey /etc/ssh_host_key" HTH, Mike Erdely mailto:mike AT erdelynet DOT com http://mike.erdelynet.com/ssh.asp -----Original Message----- From: cygwin-owner AT sources DOT redhat DOT com [mailto:cygwin-owner AT sources DOT redhat DOT com]On Behalf Of Matt Minnis Sent: Tuesday, November 21, 2000 11:12 AM To: cygwin AT sources DOT redhat DOT com Subject: SSHD setup Ok, I have beat my head against this too much now. What are the permissions for '/usr/local/etc/ssh_host_key'? What about '/etc/ssh_host_dsa_key'? If they are too open it says that this is bad, but when they are more secure, then it can't load it because it is not allowed. what chmod values do I need? /source/NT_Admin >sshd -d debug1: sshd version OpenSSH_2.3.0p1 debug1: Seeding random number generator error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ error: @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ error: Bad ownership or mode(0600) for '/usr/local/etc/ssh_host_key'. error: It is recommended that your private key files are NOT accessible by others. error: Could not load host key: /usr/local/etc/ssh_host_key: error 0 Disabling protocol version 1 error: Could not load DSA host key: /etc/ssh_host_dsa_key Disabling protocol version 2 sshd: no hostkeys available -- exiting. sshd: no hostkeys available -- exiting. Thanks, Matt -- Want to unsubscribe from this list? Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com -- Want to unsubscribe from this list? Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |