Date: Sat, 06 Feb 2016 15:19:13 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Bryan Drewery <bdrewery@FreeBSD.org> Cc: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: Re: svn commit: r294560 - head/etc/rc.d Message-ID: <86lh6xsyzi.fsf@desk.des.no> In-Reply-To: <56B3DE8E.9020603@FreeBSD.org> (Bryan Drewery's message of "Thu, 4 Feb 2016 15:28:14 -0800") References: <201601221214.u0MCE8Jk054031@repo.freebsd.org> <56B3DE8E.9020603@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Bryan Drewery <bdrewery@FreeBSD.org> writes: > I think perhaps you should also remove these as having default paths in > the .c as well and require they be enabled in the config. Otherwise a > warning is given: > > Feb 4 15:25:22 VM sshd[874]: error: Could not load host key: > /etc/ssh/ssh_host_dsa_key > > Or always generate them but only load them if enabled in the config. I did this because I wanted to move away from DSA keys without disabling them in the default config (which can break existing setups). The problem is that apparently OpenSSH doesn't interpret HostKey as "try to load these keys" but as "you must load these keys", even when it wasn't explicitly set; I would have expected the default to be "load whatever is available". I'll see if I can patch OpenSSH to do what I want, and revert this if not. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86lh6xsyzi.fsf>