This is the mail archive of the
cygwin@sources.redhat.com
mailing list for the Cygwin project.
RE: SSHD setup
- To: "Cygwin List" <cygwin at sources dot redhat dot com>
- Subject: RE: SSHD setup
- From: "Erdely, Michael" <mike at erdelynet dot com>
- Date: Tue, 21 Nov 2000 12:09:33 -0500
They (/etc/ssh_host*_key need to be owned by the account starting the
service (either SYSTEM or specified user).
Since you're using 2.3.0p1, make sure that you have created an /etc/primes
file (empty, world readable). Also, there is no need to have an ssh* files
in /usr/local/etc. Than can/should go into /etc. Edit your
/etc/sshd_config to make sure that your HostKey line looks like this:
"HostKey /etc/ssh_host_key"
HTH,
Mike Erdely
mailto:mike@erdelynet.com
http://mike.erdelynet.com/ssh.asp
-----Original Message-----
From: cygwin-owner@sources.redhat.com
[mailto:cygwin-owner@sources.redhat.com]On Behalf Of Matt Minnis
Sent: Tuesday, November 21, 2000 11:12 AM
To: cygwin@sources.redhat.com
Subject: SSHD setup
Ok,
I have beat my head against this too much now.
What are the permissions for '/usr/local/etc/ssh_host_key'?
What about '/etc/ssh_host_dsa_key'?
If they are too open it says that this is bad, but when they are more
secure, then it can't load it because it is not allowed.
what chmod values do I need?
/source/NT_Admin >sshd -d
debug1: sshd version OpenSSH_2.3.0p1
debug1: Seeding random number generator
error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
error: @ WARNING: UNPROTECTED PRIVATE KEY FILE! @
error: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
error: Bad ownership or mode(0600) for '/usr/local/etc/ssh_host_key'.
error: It is recommended that your private key files are NOT accessible by
others.
error: Could not load host key: /usr/local/etc/ssh_host_key: error 0
Disabling protocol version 1
error: Could not load DSA host key: /etc/ssh_host_dsa_key
Disabling protocol version 2
sshd: no hostkeys available -- exiting.
sshd: no hostkeys available -- exiting.
Thanks,
Matt
--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe@sourceware.cygnus.com
--
Want to unsubscribe from this list?
Send a message to cygwin-unsubscribe@sourceware.cygnus.com