From owner-freebsd-stable Tue Mar 21 10:31:19 2000 Delivered-To: freebsd-stable@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (Postfix) with ESMTP id CD36137BC79; Tue, 21 Mar 2000 10:31:15 -0800 (PST) (envelope-from kris@FreeBSD.org) Received: from localhost (kris@localhost) by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id KAA30359; Tue, 21 Mar 2000 10:30:39 -0800 (PST) (envelope-from kris@FreeBSD.org) X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs Date: Tue, 21 Mar 2000 10:30:39 -0800 (PST) From: Kris Kennaway To: Yusuf Goolamabbas Cc: Dan Moschuk , freebsd-stable@FreeBSD.ORG Subject: Re: Reason for sshd[238]: fatal: rsa_private_decrypt() failed 4.0-stable In-Reply-To: <20000321162706.B9095@outblaze.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Tue, 21 Mar 2000, Yusuf Goolamabbas wrote: > Isn't that illegal (inappropiate) for somebody outside the US ? It's not illegal, but it is inappropriate - the RSAREF code is inferior to the openssl native implementation of RSA which isn't carried in the US. Since you used the 4.x-secure-stable-supfile you should be correctly getting your crypto from internat, so thats not the problem. Can you run sshd in debug mode (sshd -d) and report the more verbose error you get when you connect to it with the client? Kris ---- In God we Trust -- all others must submit an X.509 certificate. -- Charles Forsythe To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message