https://bugzilla.novell.com/show_bug.cgi?id=671820 https://bugzilla.novell.com/show_bug.cgi?id=671820#c8 Rolf Krahl <rolf@rotkraut.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |rolf@rotkraut.de --- Comment #8 from Rolf Krahl <rolf@rotkraut.de> 2012-02-05 16:45:59 UTC --- First of all, I can confirm that the bug is still present in openSUSE 12.1. While impatiently waiting for the fix in openssh 5.9 to find its way to the openSUSE end users, i'd like to suggest a work around. Its pretty obvious: since the cause is ssh-keysign not yet supporting ecdsa keys, one may simply fall back to using a rsa host key. Steps for the work around: 1. Disable using ecdsa host key at the server: uncomment the line | HostKey /etc/ssh/ssh_host_rsa_key in /etc/ssh/sshd_config and leave all other HostKey statements commented out. 2. Create the rsa key: $ ssh-keygen -t rsa -b 2048 -f /etc/ssh/ssh_host_rsa_key -N '' 3. Restart the ssh server: $ rcsshd restart 3. Distribute the public key in /etc/ssh/ssh_host_rsa_key.pub to the ssh_known_hosts files at the clients. 4. Enjoy working host based authentication. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.