Mailinglist Archive: opensuse-bugs (4216 mails)

< Previous Next >
[Bug 744429] New: ssh-keygen & rcsshd: DSA keys must be 1024 bits
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Tue, 31 Jan 2012 23:31:48 +0000
  • Message-id: <bug-744429-21960@http.bugzilla.novell.com/>

https://bugzilla.novell.com/show_bug.cgi?id=744429

https://bugzilla.novell.com/show_bug.cgi?id=744429#c0


Summary: ssh-keygen & rcsshd: DSA keys must be 1024 bits
Classification: openSUSE
Product: openSUSE 12.1
Version: Final
Platform: x86-64
OS/Version: Other
Status: NEW
Severity: Normal
Priority: P5 - None
Component: Basesystem
AssignedTo: bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
ReportedBy: koenig@xxxxxxxx
QAContact: qa@xxxxxxx
Found By: ---
Blocker: ---


/etc/init.d/sshd tries to create dsa host key with wrong key size:

from syslog:

Jan 25 08:43:41 t3 sshd[3842]: Generating /etc/ssh/ssh_host_dsa_key.
Jan 25 08:43:41 t3 sshd[3842]: DSA keys must be 1024 bits
Jan 25 08:43:41 t3 sshd[3842]: Starting SSH daemonCould not load host key:
/etc/ssh/ssh_host_dsa_key
Jan 25 08:43:41 t3 sshd[3890]: Server listening on 0.0.0.0 port 22.
Jan 25 08:43:41 t3 sshd[3890]: Server listening on :: port 22.
Jan 25 08:43:41 t3 sshd[3842]: ..done

in /etc/init.d/sshd :

if ! test -f /etc/ssh/ssh_host_dsa_key ; then
echo Generating /etc/ssh/ssh_host_dsa_key.
ssh-keygen -t dsa -b 2048 -f /etc/ssh/ssh_host_dsa_key -N
''
fi

voila:

# ssh-keygen -t dsa -b 2048 -f /etc/ssh/ssh_host_dsa_key -N ''
DSA keys must be 1024 bits

# rpm -qf /usr/bin/ssh-keygen
openssh-5.8p2-3.1.3.x86_64

--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

< Previous Next >
List Navigation
This Thread
  • No further messages