From owner-freebsd-questions@freebsd.org Thu Apr 21 00:04:50 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id A8D08B1529C for ; Thu, 21 Apr 2016 00:04:50 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 8934F1E71 for ; Thu, 21 Apr 2016 00:04:50 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mailman.ysv.freebsd.org (Postfix) id 84D76B1529A; Thu, 21 Apr 2016 00:04:50 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 84742B15299 for ; Thu, 21 Apr 2016 00:04:50 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-io0-x244.google.com (mail-io0-x244.google.com [IPv6:2607:f8b0:4001:c06::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 6039E1E70 for ; Thu, 21 Apr 2016 00:04:50 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-io0-x244.google.com with SMTP id g185so8897470ioa.0 for ; Wed, 20 Apr 2016 17:04:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-transfer-encoding; bh=axjsvIklJrwzC/grR2LDdSwSZkgE1rjky3KoTL+/rwU=; b=t4NqefxIHPcfxQSB82iGKMwzm98IvgE70vs8zn9qLvZuyINmxaszlpovTlkrRvT1ak vfAP4zvrFUnfzo+7K8WFeQRW3rgZuOsO2raVnSjEL+NQRLs4+1J9OECn5UQhMBfwHnxI i5lavfO7XAuOKlnInQ2vIW7MeCvpFKY41nKVvb3FaopvYag9/9Q0GFlYCcpelgvtgxqQ H+EAu1ld3hFdUx6pJl+ml9oFDFB1t6Kyv5IzJXcszZwknIFPOd7XEjj/kUpI75wbSTgj +h/3xsZJyjwAW2gLH5N4sg8HRoS+TWzNmVDPOJvu5qEJGueGagGG0/l0DuPsVEgkn+I0 kCiQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:references:in-reply-to:content-transfer-encoding; bh=axjsvIklJrwzC/grR2LDdSwSZkgE1rjky3KoTL+/rwU=; b=SJs0IAVyWyk75TgriOhmKh2453VVixxNoJVeCbm5el2xwtHp4gDCn6IPTvrUpqh68A cXUepmm/sQKuV8+F8LjBIAQ6/pOi9XZqgjMDPL2SVY1JhYBQfYTs7hcUN/WtXaPwM6ks soFu8vKM4XxWn0ZOdk1aEKse3EcvPS2vo+jMPErw77yk6UKWU7ZtYc+M6bIQZ6Ddfgpd 5Ah1v1oqqsnuiGbjrji8bZSinRxwbGWKcM9u+ijxaCupx+m1nZkEnR2Tf/aLI9vxSlyB fa4/OeHoh6GLeYFOlLb8uHMWsjPxWu1XlZpp8P9rUdvd7Xggm1+ALbMe649FkyXaLA4j LjfA== X-Gm-Message-State: AOPr4FVel+XOvbCqqrR7tb394MB9zN1WbwQJBv33Jn4kFqXPIc9hnnov1yiG3UF4q7gIFQ== X-Received: by 10.107.16.104 with SMTP id y101mr12209897ioi.148.1461197089617; Wed, 20 Apr 2016 17:04:49 -0700 (PDT) Received: from [10.0.10.3] (cpe-184-56-210-236.neo.res.rr.com. [184.56.210.236]) by smtp.googlemail.com with ESMTPSA id m143sm243525ioe.43.2016.04.20.17.04.48 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 20 Apr 2016 17:04:49 -0700 (PDT) Message-ID: <57181929.40809@gmail.com> Date: Wed, 20 Apr 2016 20:04:57 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: david.robison@fisglobal.com, questions@freebsd.org Subject: Re: ssh host_key error References: <5717F8E3.6050903@gmail.com> <57180A4A.3000003@fisglobal.com> In-Reply-To: <57180A4A.3000003@fisglobal.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Apr 2016 00:04:50 -0000 Robison, Dave wrote: > On 04/20/16 02:47 PM, Ernie Luzar wrote: >> Hello list >> >> Just completed installing 10.3 from scratch to a empty disk. >> The first time I tried to remotely ssh into host I got these error messages. >> >> sshd[1347]: error: Could not load host key: /etc/ssh/ssh_host_rsa_key >> sshd[1347]: error: Could not load host key: /etc/ssh/ssh_host_dsa_key >> sshd[1347]: error: Could not load host key: /etc/ssh/ssh_host_ecdsa_key >> sshd[1347]: error: Could not load host key: /etc/ssh/ssh_host_ed25519_key >> >> >> If I remember correctly these keys were populated on the first boot of a newly installed system. Does ssh have some job to populate those keys that I can manually run? >> >> Thanks list >> >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.freebsd.org_mailman_listinfo_freebsd-2Dquestions&d=BQICAg&c=3BfiSO86x5iKjpl2b39jud9R1NrKYqPq2js90dwBswk&r=xejns4hCLY4pkxk_Fns5Pg&m=x3sBbIAx3C0zb9JpbibPIYCIeUHW69zI56o-wr_NRhc&s=D7ypGz0vlaZn39U0V1XHQE68lHYmrDi4YTyQOuQOwzU&e= To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >> > > edit /etc/ssh/sshd_config to reflect which key you want to use. I use rsa. > > # HostKey for protocol version 1 > #HostKey /etc/ssh/ssh_host_key > # HostKeys for protocol version 2 > HostKey /etc/ssh/ssh_host_rsa_key > #HostKey /etc/ssh/ssh_host_dsa_key > #HostKey /etc/ssh/ssh_host_ecdsa_key > #HostKey /etc/ssh/ssh_host_ed25519_key > > Then do, as root: > > ssh-keygen -t rsa -b 4096 > > I used 4096 because I am paranoid. > > then: > > service sshd restart > > should work > > > The ssh-keygen command is the hint I needed. Used ssh-keygen -A which builds all the host keys by default. That fixed the problem. Thanks