From owner-freebsd-security  Wed Feb 28 22:16:59 2001
Delivered-To: freebsd-security@freebsd.org
Received: from d156h168.resnet.uconn.edu (d156h168.resnet.uconn.edu [137.99.156.168])
	by hub.freebsd.org (Postfix) with SMTP id 9623837B71A
	for <freebsd-security@FreeBSD.ORG>; Wed, 28 Feb 2001 22:16:49 -0800 (PST)
	(envelope-from sirmoo@cowbert.2y.net)
Received: (qmail 66780 invoked by alias); 1 Mar 2001 06:17:19 -0000
Received: from unknown (HELO sirmoobert) (137.99.158.30)
  by d156h168.resnet.uconn.edu with SMTP; 1 Mar 2001 06:17:19 -0000
Message-ID: <000b01c0a216$a6ba95c0$1e9e6389@137.99.156.23>
From: "Peter C. Lai" <sirmoo@cowbert.2y.net>
To: "Mikhail Kruk" <meshko@cs.brandeis.edu>,
	"Tony Landells" <ahl@austclear.com.au>
Cc: <freebsd-security@FreeBSD.ORG>
References: <Pine.LNX.4.30.0103010104560.4451-100000@calliope.cs.brandeis.edu>
Subject: Re: sshd weirdness 
Date: Thu, 1 Mar 2001 01:12:53 -0500
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4133.2400
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

ok so, to preserve the keys, i should go back in, and use the conversion
util for ssh-keys to OpenSSH-keys?
----- Original Message -----
From: "Mikhail Kruk" <meshko@cs.brandeis.edu>
To: "Tony Landells" <ahl@austclear.com.au>
Cc: "Peter C. Lai" <sirmoo@cowbert.2y.net>; <freebsd-security@FreeBSD.ORG>
Sent: Thursday, March 01, 2001 1:09 AM
Subject: Re: sshd weirdness


> > > I reboot the machine to use the new kernel, and 1. sshd is NOT
running,
> > > because in rc.conf, sshd_enable is set to OFF for some reason, and 2.
when i
> > > try to ssh in from a location on the same subnet, I am told the
fingerprint
> > > has changed.
> >
> > sshd_enable is set to OFF because you removed the package, I would
assume...
>
> I think it was set off because he didn't use internal openssh before. It's
> probably just the default setting.  Has nothing to do with the port. Port
> uses the script in balh/etc/rc.d
>
>
> > > removed, which is expected.
> >
> > No, this is the bit that's wrong.  This is the startup script for
OpenSSH,
> > and should not have been removed.
>
> no, from /usr/ports/security/ssh2/Makefile:
>
>   @if [ "`grep ssh /etc/inetd.conf|grep -v ^#ssh`" = "" ]; then \
>             if [ ! -f ${PREFIX}/etc/rc.d/sshd.sh ]; then \
>                 ${ECHO} "Installing ${PREFIX}/etc/rc.d/sshd.sh startup
> file."; \
>                 ${SED} -e 's+!!PREFIX!!+${PREFIX}+' < ${FILESDIR}/sshd.sh
> \
>                         > ${PREFIX}/etc/rc.d/sshd.sh; \
>                 ${CHMOD} 751 ${PREFIX}/etc/rc.d/sshd.sh; \
>             fi; \
>         fi
>
>
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message