Date: Fri, 08 Mar 2002 17:08:44 -0700 From: Brett Glass <brett@lariat.org> To: "Jason Sopko" <jason@sopko.net>, <freebsd-security@FreeBSD.ORG> Subject: RE: openssh 3.1 port broken? Message-ID: <4.3.2.7.2.20020308170716.02b7d820@nospam.lariat.org> In-Reply-To: <000601c1c6ae$69dc29d0$1c00a8c0@thematrixhasyou> References: <20020308114426.29c0d676.damir@voljatel.si>
next in thread | previous in thread | raw e-mail | index | archive | help
At 07:34 AM 3/8/2002, Jason Sopko wrote:
>Edit the Makefile in the openssh ports and modify line 106 to the
>following:
>
>${PREFIX}/bin/ssh-keygen -t rsa1 -N "" -f ${PREFIX}/etc/ssh_host_key
>
>You just need to add '-t rsa1' to the line, that is all that needs
>changed. I had the same problem and this worked for me.
>
>///Jason
Better still, if you're replacing the version in the base install,
shouldn't you skip the ssh-keygen altogether? Otherwise, every
client will receive a message suggesting that your system may
have been compromised..... Not reassuring. And some clients make
it difficult to update a host key.
--Brett
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.7.2.20020308170716.02b7d820>