[Bug 398250] New: SSHD Keyfiles messed up in installation
https://bugzilla.novell.com/show_bug.cgi?id=398250 Summary: SSHD Keyfiles messed up in installation Product: openSUSE 11.0 Version: RC 1 Platform: x86-64 OS/Version: openSUSE 11.0 Status: NEW Severity: Normal Priority: P5 - None Component: Installation AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: quentin.jackson@exclamation.co.nz QAContact: jsrain@novell.com Found By: Customer Apologies if this is some kind of design change but I haven't seen it anywhere. A fresh install of RC1 produces the below errors and as a result SSHD does not start. Starting SSH daemon@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Permissions 0666 for '/etc/ssh/ssh_host_rsa_key' are too open. It is recommended that your private key files are NOT accessible by others. This private key will be ignored. bad permissions: ignore key: /etc/ssh/ssh_host_rsa_key Could not load host key: /etc/ssh/ssh_host_rsa_key @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Permissions 0666 for '/etc/ssh/ssh_host_dsa_key' are too open. It is recommended that your private key files are NOT accessible by others. This private key will be ignored. bad permissions: ignore key: /etc/ssh/ssh_host_dsa_key Could not load host key: /etc/ssh/ssh_host_dsa_key Disabling protocol version 2. Could not load host key sshd: no hostkeys available -- exiting. startproc: exit status of parent of /usr/sbin/sshd: 1 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=398250
User quentin.jackson@exclamation.co.nz added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c1
--- Comment #1 from Quentin Jackson
https://bugzilla.novell.com/show_bug.cgi?id=398250
Andreas Jaeger
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c3
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User quentin.jackson@exclamation.co.nz added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c4
--- Comment #4 from Quentin Jackson
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c5
--- Comment #5 from Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User quentin.jackson@exclamation.co.nz added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c6
Quentin Jackson
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c7
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c8
Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c9
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c10
Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User quentin.jackson@exclamation.co.nz added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c11
--- Comment #11 from Quentin Jackson
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c12
--- Comment #12 from Lukas Ocilka
I am positive I formatted the / drive as I always do (I despise upgrades cause they always cause problems (like this I suppose)) so unless the ssh data is stored on home somewhere which surprises me are we sure this is correct?!
As I've already written in comment #7: Key files have been copied from some previous installation found on your disks (/dev/sda2). No user-keys have been copied, just the sshd server ones and that's right. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=398250
User quentin.jackson@exclamation.co.nz added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c13
--- Comment #13 from Quentin Jackson
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c14
--- Comment #14 from Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User quentin.jackson@exclamation.co.nz added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c15
--- Comment #15 from Quentin Jackson
https://bugzilla.novell.com/show_bug.cgi?id=398250
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c16
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c17
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c18
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c19
--- Comment #19 from Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c20
--- Comment #20 from Lukas Ocilka
Fine. Yast will take care of checking permissions during installation.
Hmm, how exactly :)? What are the "correct" permissions of these files? For instance: chown root:root /etc/ssh/ssh_host_rsa_key \ /etc/ssh/ssh_host_key /etc/ssh/ssh_host_rsa_key chmod 0600 /etc/ssh/ssh_host_rsa_key \ /etc/ssh/ssh_host_key /etc/ssh/ssh_host_rsa_key -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c21
--- Comment #21 from Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c22
Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c23
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=398250
Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c24
Anna Bernathova
https://bugzilla.novell.com/show_bug.cgi?id=398250
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c25
--- Comment #25 from Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=398250
User locilka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c26
Lukas Ocilka
https://bugzilla.novell.com/show_bug.cgi?id=398250
User anicka@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=398250#c27
Anna Bernathova
participants (1)
-
bugzilla_noreply@novell.com