Thanks for the response. I tried that, but it's still not working. However, now I get a different error message when I execute /usr/sbin/sshd -d -d:
debug1: Seeding random number generator debug1: sshd version OpenSSH_2.9p2 debug1: private host key: #0 type 0 RSA1 debug1: PEM_read_PrivateKey failed debug1: read PEM private key done: type <unknown> Could not load host key: /etc/ssh/ssh_host_rsa_key debug1: PEM_read_PrivateKey failed debug1: read PEM private key done: type <unknown> Could not load host key: /etc/ssh/ssh_host_dsa_key Disabling protocol version 2. Could not load host key Now I'm wondering if I've generated the rsa and/or dsa key pairs incorrectly. The syntax I used is: ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key and ssh-keygen -t dsa -f /etc/ssh/ssh_host_rsa_key And I've verified that /etc/ssh/sshd_config contains: HostKey /etc/ssh/ssh_host_key HostKey /etc/ssh/ssh_host_rsa_key HostKey /etc/ssh/ssh_host_dsa_key I've also ensured that root has rw permissions on the private key. (the public key is world-readable) Any other ideas? Thanks. --kurt On Monday 03 December 2001 04:21 pm, Cassandra Lynette Ludwig wrote: > Kurt - I just signed up this week to the mailing list, so I wasn't around > to respond last week. > > The problem you are having is due to the new implementation of SSHD for > woody. What you need to do is modify the /etc/ssh/sshd_config file to > include the dsa key... to do this the following needs to be done to > sshd_config > > Where you have the line :- > HostKey /etc/ssh/ssh_host_key > > Add after it the following two lines :- > HostKey /etc/ssh/ssh_host_rsa_key > HostKey /etc/ssh/ssh_host_dsa_key > > This will fix the problem when you restart sshd. > > The update script does not modify the sshd_config file for a variety of > good reasons, and I cannot remember if it even includes the new config > file or not. > > The latest implementation uses one keyfile for both protocols, but at the > moment as far as I know, the latest version is yet to hit even unstable in > Debian. (Good choice in my opinion... let's see how it works before > adding extra hassles). > > Regards, > Cassandra
