SSHD setup

[Erdely, Michael]

They (/etc/ssh_host*_key need to be owned by the account starting the
service (either SYSTEM or specified user).
Since you're using 2.3.0p1, make sure that you have created an /etc/primes
file (empty, world readable).  Also, there is no need to have an ssh* files
in /usr/local/etc.  Than can/should go into /etc.  Edit your
/etc/sshd_config to make sure that your HostKey line looks like this:
"HostKey /etc/ssh_host_key"

HTH,
Mike Erdely
mailto:mike@erdelynet.com
http://mike.erdelynet.com/ssh.asp


-----Original Message-----
From: cygwin-owner@sources.redhat.com
[ mailto:cygwin-owner@sources.redhat.com]On Behalf Of Matt Minnis
Sent: Tuesday, November 21, 2000 11:12 AM
To: cygwin@sources.redhat.com
Subject: SSHD setup


Ok,

I have beat my head against this too much now.
What are the permissions for '/usr/local/etc/ssh_host_key'?
What about '/etc/ssh_host_dsa_key'?
If they are too open it says that this is bad, but when they are more
secure, then it can't load it because it is not allowed.
what chmod values do I need?

/source/NT_Admin >sshd -d
debug1: sshd version OpenSSH_2.3.0p1
debug1: Seeding random number generator
error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
error: @         WARNING: UNPROTECTED PRIVATE KEY FILE!          @
error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
error: Bad ownership or mode(0600) for '/usr/local/etc/ssh_host_key'.
error: It is recommended that your private key files are NOT accessible by
others.
error: Could not load host key: /usr/local/etc/ssh_host_key: error 0
Disabling protocol version 1
error: Could not load DSA host key: /etc/ssh_host_dsa_key
Disabling protocol version 2
sshd: no hostkeys available -- exiting.
sshd: no hostkeys available -- exiting.


Thanks,

Matt


--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe@sourceware.cygnus.com



--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe@sourceware.cygnus.com