From owner-freebsd-questions Sun Jun 30 15:11: 4 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D7B9B37B400 for ; Sun, 30 Jun 2002 15:11:00 -0700 (PDT) Received: from smtp.infracaninophile.co.uk (happy-idiot-talk.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id F332043E0A for ; Sun, 30 Jun 2002 15:10:59 -0700 (PDT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost.infracaninophile.co.uk [IPv6:::1]) by smtp.infracaninophile.co.uk (8.12.4/8.12.4) with ESMTP id g5UMAwtD042689; Sun, 30 Jun 2002 23:10:58 +0100 (BST) (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost) by happy-idiot-talk.infracaninophile.co.uk (8.12.4/8.12.4/Submit) id g5UMAr2m042688; Sun, 30 Jun 2002 23:10:53 +0100 (BST) Date: Sun, 30 Jun 2002 23:10:53 +0100 From: Matthew Seaman To: Steven Lake Cc: freebsd-questions@FreeBSD.ORG Subject: Re: SSH error Message-ID: <20020630221053.GA42558@happy-idiot-talk.infracaninophi> References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sun, Jun 30, 2002 at 04:39:33PM -0500, Steven Lake wrote: > Hi everybody! I was surfing my security logs on one of our boxes > and I found a number of these errors preceeding a successful login entry. > > WARNING: /usr/local/etc/moduli does not exist, using old modulus > > Does anyone know what this means or what might be wrong? According to the > logs I haven't seen this error for a few days, but the logs are filled > with them prior to about 3 days ago. If you've recently de-installed an openssh package from under /usr/local and reinstalled openssh-portable with -DOPENSSH_OVERWRITE_BASE, remember that you need to kill and restart the sshd process for the update to take effect. Otherwise you must have accidentally deleted one of the files used by ssh. It's used as input data when setting up session encryption. ssh will work without it, but you should probably replace the file as soon as you can because it means that the encryption used by ssh on your machine may not be as uncrackable as it should be. If there's a file /etc/ssh/moduli then you can just copy that to /usr/local/etc, or copy the file from another box, or you can pull the file out of the openssh source code: cd /tmp tar -zxvf /usr/ports/distfiles/openssh-3.4p1.tar.gz openssh-3.4p1/moduli cp openssh-3.4p1/moduli /usr/local/etc Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way Tel: +44 1628 476614 Marlow Fax: +44 0870 0522645 Bucks., SL7 1TH UK To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message