https://bugzilla.novell.com/show_bug.cgi?id=671820
https://bugzilla.novell.com/show_bug.cgi?id=671820#c8
Rolf Krahl changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |rolf@rotkraut.de
--- Comment #8 from Rolf Krahl 2012-02-05 16:45:59 UTC ---
First of all, I can confirm that the bug is still present in openSUSE 12.1.
While impatiently waiting for the fix in openssh 5.9 to find its way to the
openSUSE end users, i'd like to suggest a work around. Its pretty obvious:
since the cause is ssh-keysign not yet supporting ecdsa keys, one may simply
fall back to using a rsa host key.
Steps for the work around:
1. Disable using ecdsa host key at the server: uncomment the line
| HostKey /etc/ssh/ssh_host_rsa_key
in /etc/ssh/sshd_config and leave all other HostKey statements commented out.
2. Create the rsa key:
$ ssh-keygen -t rsa -b 2048 -f /etc/ssh/ssh_host_rsa_key -N ''
3. Restart the ssh server:
$ rcsshd restart
3. Distribute the public key in /etc/ssh/ssh_host_rsa_key.pub to the
ssh_known_hosts files at the clients.
4. Enjoy working host based authentication.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.