Date: Fri, 06 Jun 2014 17:02:13 -0500 From: Paul Schmehl <pschmehl_lists@tx.rr.com> To: Kevin Phair <phair.kevin@gmail.com>, Freebsd Questions <freebsd-questions@freebsd.org> Subject: Re: sshd broken after binary upgrade Message-ID: <704ACBF503C73C4AFDCBC342@localhost> In-Reply-To: <5392363B.8090206@gmail.com> References: <3BC6F354F757BCAAF379EC6C@localhost> <5392363B.8090206@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--On June 6, 2014 at 5:44:27 PM -0400 Kevin Phair <phair.kevin@gmail.com> wrote: > > On 6/6/14, 5:33 PM, Paul Schmehl wrote: >> I upgraded a server from 8.3 to 8.4, and now sshd is broken. (The >> other server upgraded fine.) I used freebsd-update to upgrade to 8.4 >> RELEASE. >> >> Here's the errors I'm getting: >> >> # /etc/rc.d/sshd restart >> sshd not running? (check /var/run/sshd.pid). >> You already have an RSA host key in /etc/ssh/ssh_host_key >> Skipping protocol version 1 RSA Key Generation >> You already have a DSA host key in /etc/ssh/ssh_host_dsa_key >> Skipping protocol version 2 DSA Key Generation >> You already have an RSA host key in /etc/ssh/ssh_host_rsa_key >> Skipping protocol version 2 RSA Key Generation >> Auto configuration failed >> 58803:error:0E079065:configuration file routines:DEF_LOAD_BIO:missing >> equal >> sign:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/conf/c >> onf_def.c:366:line 145 >> Performing sanity check on sshd configuration. >> Auto configuration failed >> 58804:error:0E079065:configuration file routines:DEF_LOAD_BIO:missing >> equal >> sign:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/conf/c >> onf_def.c:366:line 145 >> /etc/rc.d/sshd: WARNING: failed precmd routine for sshd >> >> sshd_config looks fine. I replaced /etc/rc.d/sshd with a copy from >> the working server, so that's apparently not the problem. Not sure >> what's missing. >> >> Any help would be appreciated. I am connected to the server, but >> obviously can't start a new session. >> > It sounds similar to what this person ran into: > https://forums.freebsd.org/viewtopic.php?&t=36372 > > I've taken to telling freebsd-update to ignore /etc all together; the > time spent fixing things I let freebsd-update break in /etc/ seemed to > outmatch time required to make any config updates manually. > Thanks, Kevin. That fixed it. -- Paul Schmehl, Senior Infosec Analyst As if it wasn't already obvious, my opinions are my own and not those of my employer. ******************************************* "It is as useless to argue with those who have renounced the use of reason as to administer medication to the dead." Thomas Jefferson "There are some ideas so wrong that only a very intelligent person could believe in them." George Orwell
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?704ACBF503C73C4AFDCBC342>