Problems with OpenSSH after upgrading: private keys broken !
Hello, Last night I installed the OpenSSH update from YOU, and this morning I found that all our public keys don't work anymore. What's worse, generating new ones doesn't work either. Several of our users have been using RSA keys for months now with no problem at all, we use them for backup jobs and other things where passwords would cause a problem. We tried generating new RSA keys, that help . We also tried generating new DSA keys, that didn't help either. Has anyone else had this problem? Info for the box in question: Linux fluorite 2.4.0-64GB-SMP #1 SMP Wed Jan 24 15:52:30 GMT 2001 i686 unknown SuSE Linux 7.1 (i386) VERSION = 7.1 Please note I did not download and update the box by hand, I used YOU. If anyone could provide me with a work-around that doesn't require entering any sort of pass phrase (remember, programs that's can't type passwords need it, not humans) I'd really appreciate it. Additionally, I'd like to know what caused the problem to begin with - I'm pretty surprised the upgrade broke they keys, I would think that would cause serious problems for a lot of people. ---------------------------------------------------- Jonathan Wilson System Administrator Cedar Creek Software http://www.cedarcreeksoftware.com Central Texas IT http://www.centraltexasit.com
JW wrote:
Several of our users have been using RSA keys for months now with no problem at all, we use them for backup jobs and other things where passwords would cause a problem.
We tried generating new RSA keys, that help . We also tried generating new DSA keys, that didn't help either.
Has anyone else had this problem? <snip> Please note I did not download and update the box by hand, I used YOU.
If anyone could provide me with a work-around that doesn't require entering any sort of pass phrase (remember, programs that's can't type passwords need it, not humans) I'd really appreciate it.
Did you restart the process? Maybe the files were replaced but the daemon was never restarted to use them. -- Joe & Sesil Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Web Address: www.mydestiny.net/~joe_morris Registered Linux user 231871 "We can stand affliction better than we can prosperity, for in prosperity we forget God." --Dwight Lyman Moody
At 09:17 AM 12/7/2001 +0800, you wrote:
JW wrote:
Several of our users have been using RSA keys for months now with no problem at all, we use them for backup jobs and other things where passwords would cause a problem.
We tried generating new RSA keys, that help . We also tried generating new DSA keys, that didn't help either.
Has anyone else had this problem? <snip> Please note I did not download and update the box by hand, I used YOU.
If anyone could provide me with a work-around that doesn't require entering any sort of pass phrase (remember, programs that's can't type passwords need it, not humans) I'd really appreciate it.
Did you restart the process? Maybe the files were replaced but the daemon was never restarted to use them.
Yes. It has boiled down to the fact that RSA1/RSA(2) does not work any more. I do not know why not but SSHd acts like it doesn't even exist. Maybe I did something wrong but I did manage to get DSA to work and that's what counts. Also a problem with permissions: StrictModes yes was the default in that RPM. Next RPM (the one that was announced a few hours ago) has StrictModes defaulting back to no.
-- Joe & Sesil Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Web Address: www.mydestiny.net/~joe_morris Registered Linux user 231871 "We can stand affliction better than we can prosperity, for in prosperity we forget God." --Dwight Lyman Moody
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com
---------------------------------------------------- Jonathan Wilson System Administrator Cedar Creek Software http://www.cedarcreeksoftware.com Central Texas IT http://www.centraltexasit.com
participants (2)
-
Joe & Sesil Morris (NTM) -
JW