From owner-freebsd-current Sat Feb 26 2:44:12 2000 Delivered-To: freebsd-current@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id 0731037BB9A; Sat, 26 Feb 2000 02:44:10 -0800 (PST) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id CAA79789; Sat, 26 Feb 2000 02:44:09 -0800 (PST) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Sat, 26 Feb 2000 02:44:09 -0800 (PST) From: Kris Kennaway To: "Jordan K. Hubbard" Cc: current@FreeBSD.ORG, markm@FreeBSD.ORG Subject: Re: OpenSSH /etc patch In-Reply-To: <34736.951553118@zippy.cdrom.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG yOn Sat, 26 Feb 2000, Jordan K. Hubbard wrote: > > +# Generate SSH host key, if it doesnt exist. Both sshd and ssh need it > > +# so we do it unconditionally on sshd_enable. > > Are you sure ssh requires a host key? I could have sworn this was > entirely related to sshd and could thus be lumped into the same > "if sshd_enable=YES" clause. The code does not lie :-) From ssh.c: /* * If we successfully made the connection, load the host private key * in case we will need it later for combined rsa-rhosts * authentication. This must be done before releasing extra * privileges, because the file is only readable by root. */ if (ok) { host_private_key = RSA_new(); if (load_private_key(HOST_KEY_FILE, "", host_private_key, NULL)) host_private_key_loaded = 1; } Kris ---- "How many roads must a man walk down, before you call him a man?" "Eight!" "That was a rhetorical question!" "Oh..then, seven!" -- Homer Simpson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message