[gentoo-dev] sshd error - gentoo-dev - Gentoo Mailing List Archives

From:	Chuck Haines <chaines@×××.EDU>
To:	gentoo-dev@g.o
Subject:	[gentoo-dev] sshd error
Date:	Sat, 18 May 2002 12:09:07
Message-Id:	`Pine.OSF.4.43.0205181305140.27348-100000@garden.WPI.EDU`

1

I am having a problem getting sshd to work.  I am trying to run sshd to

2

start the server and go the following error.

3

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

4

@         WARNING: UNPROTECTED PRIVATE KEY FILE!          @

5

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@

6

Permissions 0644 for '/etc/ssh/ssh_host_dsa.pub' are too open.

7

It is recommended that your private key files are NOT accessible by

8

others.

9

This private key will be ignored.

10

bad permissions: ignore key: /etc/ssh/ssh_host_dsa.pub

11

Could not load host key: /etc/ssh/ssh_host_dsa.pub

12

Disabling protocol version 2. Could not load host key

13

sshd: no hostkeys available -- exiting.

14

15

This was the public key that was created when I ran ssh-keygen as root to

16

create the keys (which is the only way I know how to create host keys).  I

17

have tried using both ssh_host_dsa.pub and ssh_host_dsa but neither work.

18

I get the same error for both.  I have tried every combination of

19

permissions for both of the files.  My current configuration (which

20

matched a person on irc that had it working) is:

21

22

root@coruscant ssh # ls -al

23

total 120

24

drwxr-xr-x    2 root     root         4096 May 18 12:21 .

25

drwxr-xr-x   29 root     root         4096 May 18 12:19 ..

26

-rw-r--r--    1 root     root        88039 Apr  7 22:21 moduli

27

-rw-r--r--    1 root     root         1144 Apr  7 22:21 ssh_config

28

-rw-------    1 root     root          668 May 18 12:17 ssh_host_dsa

29

-rw-r--r--    1 root     root          614 May 18 12:17 ssh_host_dsa.pub

30

-rw-r--r--    1 root     root          243 May 15 15:50 sshd_banner

31

-rw-r--r--    1 root     root         2478 May 18 12:21 sshd_config

32

33

any help would be greatly appreciated.

34

35

Thanks,

36

37

----------------------------------------------

38

| Chuck Haines       | AOL:   CyberGrex      |

39

| GDC Webmaster      | ICQ:   3707881        |

40

| WPILA Lab Manager  | Yahoo: CyberGrex_27   |

41

| http://gdc.wpi.edu | MSN:   CyberGrex      |

42

----------------------------------------------

43

"Geek by nature, Linux by choice."

Gentoo Archives: gentoo-dev

Replies

1	I am having a problem getting sshd to work. I am trying to run sshd to
2	start the server and go the following error.
3	@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
4	@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
5	@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
6	Permissions 0644 for '/etc/ssh/ssh_host_dsa.pub' are too open.
7	It is recommended that your private key files are NOT accessible by
8	others.
9	This private key will be ignored.
10	bad permissions: ignore key: /etc/ssh/ssh_host_dsa.pub
11	Could not load host key: /etc/ssh/ssh_host_dsa.pub
12	Disabling protocol version 2. Could not load host key
13	sshd: no hostkeys available -- exiting.
14
15	This was the public key that was created when I ran ssh-keygen as root to
16	create the keys (which is the only way I know how to create host keys). I
17	have tried using both ssh_host_dsa.pub and ssh_host_dsa but neither work.
18	I get the same error for both. I have tried every combination of
19	permissions for both of the files. My current configuration (which
20	matched a person on irc that had it working) is:
21
22	root@coruscant ssh # ls -al
23	total 120
24	drwxr-xr-x 2 root root 4096 May 18 12:21 .
25	drwxr-xr-x 29 root root 4096 May 18 12:19 ..
26	-rw-r--r-- 1 root root 88039 Apr 7 22:21 moduli
27	-rw-r--r-- 1 root root 1144 Apr 7 22:21 ssh_config
28	-rw------- 1 root root 668 May 18 12:17 ssh_host_dsa
29	-rw-r--r-- 1 root root 614 May 18 12:17 ssh_host_dsa.pub
30	-rw-r--r-- 1 root root 243 May 15 15:50 sshd_banner
31	-rw-r--r-- 1 root root 2478 May 18 12:21 sshd_config
32
33	any help would be greatly appreciated.
34
35	Thanks,
36
37	----------------------------------------------
38	\| Chuck Haines \| AOL: CyberGrex \|
39	\| GDC Webmaster \| ICQ: 3707881 \|
40	\| WPILA Lab Manager \| Yahoo: CyberGrex_27 \|
41	\| http://gdc.wpi.edu \| MSN: CyberGrex \|
42	----------------------------------------------
43	"Geek by nature, Linux by choice."