Mailing-List: contact cygwin-help AT sourceware DOT cygnus DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT sources DOT redhat DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT sources DOT redhat DOT com>
List-Help: <mailto:cygwin-help AT sources DOT redhat DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT sources DOT redhat DOT com
Delivered-To: mailing list cygwin AT sources DOT redhat DOT com
From: "Erdely, Michael" <mike AT erdelynet DOT com>
To: "Cygwin List" <cygwin AT sources DOT redhat DOT com>
Subject: RE: SSHD setup
Date: Tue, 21 Nov 2000 12:09:33 -0500
Message-ID: <HLEFLHBNJIAFNBEFLEANOEECCGAA.mike@erdelynet.com>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300
Importance: Normal
In-Reply-To: <5.0.0.25.2.20001121093042.02df5500@mail.prefres.com>

They (/etc/ssh_host*_key need to be owned by the account starting the
service (either SYSTEM or specified user).
Since you're using 2.3.0p1, make sure that you have created an /etc/primes
file (empty, world readable).  Also, there is no need to have an ssh* files
in /usr/local/etc.  Than can/should go into /etc.  Edit your
/etc/sshd_config to make sure that your HostKey line looks like this:
"HostKey /etc/ssh_host_key"

HTH,
Mike Erdely
mailto:mike AT erdelynet DOT com
http://mike.erdelynet.com/ssh.asp


-----Original Message-----
From: cygwin-owner AT sources DOT redhat DOT com
[mailto:cygwin-owner AT sources DOT redhat DOT com]On Behalf Of Matt Minnis
Sent: Tuesday, November 21, 2000 11:12 AM
To: cygwin AT sources DOT redhat DOT com
Subject: SSHD setup


Ok,

I have beat my head against this too much now.
What are the permissions for '/usr/local/etc/ssh_host_key'?
What about '/etc/ssh_host_dsa_key'?
If they are too open it says that this is bad, but when they are more
secure, then it can't load it because it is not allowed.
what chmod values do I need?

/source/NT_Admin >sshd -d
debug1: sshd version OpenSSH_2.3.0p1
debug1: Seeding random number generator
error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
error: @         WARNING: UNPROTECTED PRIVATE KEY FILE!          @
error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
error: Bad ownership or mode(0600) for '/usr/local/etc/ssh_host_key'.
error: It is recommended that your private key files are NOT accessible by
others.
error: Could not load host key: /usr/local/etc/ssh_host_key: error 0
Disabling protocol version 1
error: Could not load DSA host key: /etc/ssh_host_dsa_key
Disabling protocol version 2
sshd: no hostkeys available -- exiting.
sshd: no hostkeys available -- exiting.


Thanks,

Matt


--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com



--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe AT sourceware DOT cygnus DOT com