From owner-freebsd-questions@FreeBSD.ORG Thu Feb 2 04:18:35 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F3D9C16A420 for ; Thu, 2 Feb 2006 04:18:34 +0000 (GMT) (envelope-from davidbryce@fastmail.fm) Received: from out4.smtp.messagingengine.com (out4.smtp.messagingengine.com [66.111.4.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7DAA043D45 for ; Thu, 2 Feb 2006 04:18:34 +0000 (GMT) (envelope-from davidbryce@fastmail.fm) Received: from frontend1.internal (mysql-sessions.internal [10.202.2.149]) by frontend1.messagingengine.com (Postfix) with ESMTP id 583DFD33DFC for ; Wed, 1 Feb 2006 23:18:32 -0500 (EST) Received: from web2.messagingengine.com ([10.202.2.211]) by frontend1.internal (MEProxy); Wed, 01 Feb 2006 23:18:32 -0500 Received: by web2.messagingengine.com (Postfix, from userid 99) id 32DC610870; Wed, 1 Feb 2006 23:18:21 -0500 (EST) Message-Id: <1138853901.26296.253345905@webmail.messagingengine.com> X-Sasl-Enc: G4dXhdGStYzfHsgBPLm5a+uj312rf1BqZPfpmkzXeRvj 1138853901 From: "david bryce" To: freebsd-questions@freebsd.org Content-Disposition: inline Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset="ISO-8859-1" MIME-Version: 1.0 X-Mailer: MIME::Lite 5022 (F2.73; T1.15; A1.64; B3.05; Q3.03) In-Reply-To: <1138853128.25417.253345874@webmail.messagingengine.com> Date: Thu, 02 Feb 2006 15:18:21 +1100 References: <1138853128.25417.253345874@webmail.messagingengine.com> Cc: willmaier@ml1.net Subject: SSH with Public Key Authentication X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Feb 2006 04:18:35 -0000 > > What about on the freebsd server side? Are there any logfiles I can > > look at on the server? Thanks! > > I often find it more useful to temporarily run a second sshd on an > alternate port, with stderr directed to the console and sshd in > no-detach and debug mode. Try the following: > > $ sshd -d -d -d -e -D -p 222 > > Then watch the output as you try to connect on that port > > $ sshd myhost -p 222 > > If you'd like, you can redirect the output to a file, too, but I > find that screen(1)'s scrollback usually is enough for me. > > -- > > o--------------------------{ Will Maier }--------------------------o > | jabber:..wcmaier at jabber.ccc.de | email:..........wcmaier at ml1.net > | > | \.........wcmaier at cae.wisc.edu | \..........wcmaier at cae.wisc.edu > | > *------------------[ BSD Unix: Live Free or Die ]------------------* Thanks, Will! I think we're finally getting somewhere! The output from this: debug2: read_server_config: filename /etc/ssh/sshd_config debug1: sshd version OpenSSH_3.8.1p1 FreeBSD-20040419 Could not load host key: /etc/ssh/ssh_host_dsa_key Disabling protocol version 2. Could not load host key sshd: no hostkeys available -- exiting. Then I tried doing a "/usr/local/bin/ssh-keygen -t dsa /etc/ssh/ssh_host_dsa_key". Is this the right way to do it? Probably not, because then I got: debug2: read_server_config: filename /etc/ssh/sshd_config debug1: sshd version OpenSSH_3.8.1p1 FreeBSD-20040419 debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key. debug1: PEM_read_PrivateKey failed debug1: read PEM private key done: type Could not load host key: /etc/ssh/ssh_host_dsa_key Disabling protocol version 2. Could not load host key sshd: no hostkeys available -- exiting. Doing a "/usr/local/bin/ssh-keygen -t rsa /etc/ssh/ssh_host_dsa_key" didn't seem to make much difference. Any ideas what to try next? Thank you! Regards, DB -- david bryce davidbryce@fastmail.fm -- http://www.fastmail.fm - Email service worth paying for. Try it for free