From owner-freebsd-stable  Sat Oct 13 10:59:26 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from lurza.secnetix.de (lurza.secnetix.de [212.66.1.130])
	by hub.freebsd.org (Postfix) with ESMTP id D8FE737B40C
	for <freebsd-stable@FreeBSD.ORG>; Sat, 13 Oct 2001 10:59:21 -0700 (PDT)
Received: (from olli@localhost)
	by lurza.secnetix.de (8.11.6/8.11.6) id f9DHxGp92745;
	Sat, 13 Oct 2001 19:59:16 +0200 (CEST)
	(envelope-from oliver.fromme@secnetix.de)
Date: Sat, 13 Oct 2001 19:59:16 +0200 (CEST)
Message-Id: <200110131759.f9DHxGp92745@lurza.secnetix.de>
From: Oliver Fromme <olli@secnetix.de>
To: freebsd-stable@FreeBSD.ORG
Reply-To: freebsd-stable@FreeBSD.ORG
Subject: Re: SSH broken in FBSD 4.4-STABLE!!
In-Reply-To: <20011013181212.R22627-100000@klima.physik.uni-mainz.de>
X-Newsgroups: list.freebsd-stable
User-Agent: tin/1.5.4-20000523 ("1959") (UNIX) (FreeBSD/4.4-RELEASE (i386))
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

Hartmann, O. <ohartman@klima.physik.uni-mainz.de> wrote:
 > [...]
 > The only way to start sshd was to telnet to the appropriate host
 > and start the daemon manually. And this manual start does not produce any
 > problem! The I started sshd via rc.local - not problem. It seems, that
 > it depends on __when__ sshd starts in the rc-triggered startup process.

This sounds very much like it doesn't get enough entropy
(randomness) right after reboot.  When it is started later,
more randomness has been accumulated, which then might be
sufficient to generate the server RSA key.  Do you have set
"rand_irqs" to reasonable values in your /etc/rc.conf?
The occurence of IRQs are used, among other things, to feed
entropy to /dev/random and /dev/urandom.
Try changing the values, maybe it helps.

Note that the allocation of IRQs on an SMP/APIC machine is
much different from a UP machine.  This might be the reason
why the problem does not occur on UP boxes.  However, I
have no idea what the SSE setting could have to do with it.

Regards
   Oliver

-- 
Oliver Fromme, secnetix GmbH & Co KG, Oettingenstr. 2, 80538 München
Any opinions expressed in this message may be personal to the author
and may not necessarily reflect the opinions of secnetix in any way.

"All that we see or seem is just a dream within a dream" (E. A. Poe)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message