Mailinglist Archive: opensuse-security (465 mails)

< Previous Next >
[Fwd: Re: [suse-security] Problems with OpenSSH after upgrading:private keys broken !]
  • From: Sven Michels <smichels@xxxxxxxxxxxx>
  • Date: Fri, 07 Dec 2001 11:07:21 +0100
  • Message-id: <3C1094D9.9B9B21B@xxxxxxxxxxxx>


-------- Original Message --------
Subject: Re: [suse-security] Problems with OpenSSH after upgrading:private keys
broken !
Date: Fri, 07 Dec 2001 10:52:14 +0100
From: Kevin Ivory <Ivory@xxxxxxxxx>
Organization: Service Network GmbH, Goettingen, Germany
To: Sven Michels <smichels@xxxxxxxxxxxx>
Newsgroups: lists.linux.suse-security
References: <5.1.0.14.0.20011206112050.03ee1d60@xxxxxxxxxxxxxxxxxxxxxxx>
<5.1.0.14.0.20011206121012.01fd5200@xxxxxxxxxxxxxxxxxxxxxxx>
<3C0FB8B1.201D5CE@xxxxxxxxxxxx>

In case this does not show up on suse-security, could you please
forward it?

Sven Michels wrote:
> you need to copy the new DSA Key to authorized_keys2, notice the 2.

That is not true anymore,
see http://lwn.net/2001/1004/a/openssh.php3

Important Changes:
==================

OpenSSH 2.9.9 might have upgrade issues introduced by the long time
between releases, which may affect people in unforseen ways:

1) The files
/etc/ssh_known_hosts2
~/.ssh/known_hosts2
~/.ssh/authorized_keys2
are now obsolete, you can use
/etc/ssh_known_hosts
~/.ssh/known_hosts
~/.ssh/authorized_keys
For backward compatibility ~/.ssh/authorized_keys2 is still used for
authentication and hostkeys are still read from the known_hosts2.
However, old files are considered 'readonly'. Future releases are
likely to not read these files.

Kevin
--
_ | Kevin Ivory | Tel: +49-551-37000041
|_ |\ | | Service Network GmbH | Fax: +49-551-3700009
._|ER | \|ET | Bahnhofsallee 1b | mailto:Ivory@xxxxxxxxx
Service Network | 37081 Goettingen | http://www.SerNet.de/

< Previous Next >
This Thread
  • No further messages