From owner-freebsd-questions Mon Sep 30 18: 4:18 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C665637B401 for ; Mon, 30 Sep 2002 18:04:16 -0700 (PDT) Received: from mta05.mail.mel.aone.net.au (mta05.mail.au.uu.net [203.2.192.85]) by mx1.FreeBSD.org (Postfix) with ESMTP id A9C6343E4A for ; Mon, 30 Sep 2002 18:04:15 -0700 (PDT) (envelope-from rbyrnes@ozemail.com.au) Received: from pootah ([63.34.199.71]) by mta05.mail.mel.aone.net.au with SMTP id <20021001010413.TYKE28826.mta05.mail.mel.aone.net.au@pootah>; Tue, 1 Oct 2002 11:04:13 +1000 Message-ID: <00cb01c268e5$912adca0$3164a8c0@pootah> From: "Rob B" To: , References: <000501c25a5b$44c54d20$3164a8c0@number6.loop.bpa.nu> <20020912132443.GA28699@catflap.home.slightlystrange.org> Subject: Re: ssh problems Date: Tue, 1 Oct 2002 10:57:49 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ----- Original Message ----- From: "Daniel Bye" To: Sent: Thursday, September 12, 2002 11:24 PM Subject: Re: ssh problems > On Thu, Sep 12, 2002 at 10:52:34PM +1000, Rob B wrote: > > These two machines are on a private LAN. Going from one to the other works > > fine, but not the other way round. > > erwin:~$ ssh doormat > > The authenticity of host 'doormat (192.168.100.1)' can't be established. > > DSA key fingerprint is c9:5d:b6:f5:d6:ab:6a:58:75:5f:d9:a7:c1:6f:be:00. > > Are you sure you want to continue connecting (yes/no)? yes > > Warning: Permanently added 'doormat' (DSA) to the list of known hosts. > > key_verify failed for server_host_key > > Try running ssh with the flags "-v -v" to get more verbose diagnostics. > You may well see what is failing, where, when and why. debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'doormat.number6.loop.bpa.nu' is known and matches the DSA host key. debug1: Found key in /home/loop/.ssh/known_hosts:1 debug1: bits set: 1628/3191 debug1: ssh_dss_verify: signature incorrect key_verify failed for server_host_key debug1: Calling cleanup 0x12002ad20(0x0) erwin:~$ I'm wondering if erwin's keys are the ones with the problem, and it's doormat sending the error > Just as a thought, though, is doormat's server_host_key in the right place, > with the correct permissions? [root@doormat]/root: ls -la /etc/ssh/ total 136 drwxr-xr-x 2 root wheel 512 Jul 29 2002 . drwxr-xr-x 16 root wheel 2048 Sep 16 09:13 .. -rw-r--r-- 1 root wheel 88110 Jul 29 2002 moduli -rw-r--r-- 1 root wheel 26346 Jun 15 2002 primes -rw-r--r-- 1 root wheel 1233 Jul 29 2002 ssh_config -rw------- 1 root wheel 668 Jul 27 2002 ssh_host_dsa_key -rw-r--r-- 1 root wheel 612 Jul 27 2002 ssh_host_dsa_key.pub -rw------- 1 root wheel 537 Jul 27 2002 ssh_host_key -rw-r--r-- 1 root wheel 341 Jul 27 2002 ssh_host_key.pub -rw------- 1 root wheel 883 Jul 29 2002 ssh_host_rsa_key -rw-r--r-- 1 root wheel 234 Jul 29 2002 ssh_host_rsa_key.pub -rw-r--r-- 1 root wheel 2414 Jul 29 2002 sshd_config I have regenerated the keys on doormat, still getting the same error To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message