From owner-freebsd-stable  Thu Jan 17  8:35: 6 2002
Delivered-To: freebsd-stable@freebsd.org
Received: from rwcrmhc51.attbi.com (rwcrmhc51.attbi.com [204.127.198.38])
	by hub.freebsd.org (Postfix) with ESMTP id E56D437B400
	for <stable@FreeBSD.ORG>; Thu, 17 Jan 2002 08:34:51 -0800 (PST)
Received: from bmah.dyndns.org ([12.233.149.189]) by rwcrmhc51.attbi.com
          (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP
          id <20020117163451.PER5944.rwcrmhc51.attbi.com@bmah.dyndns.org>;
          Thu, 17 Jan 2002 16:34:51 +0000
Received: (from bmah@localhost)
	by bmah.dyndns.org (8.11.6/8.11.6) id g0HGYpD22958;
	Thu, 17 Jan 2002 08:34:51 -0800 (PST)
	(envelope-from bmah)
Message-Id: <200201171634.g0HGYpD22958@bmah.dyndns.org>
X-Mailer: exmh version 2.5 07/13/2001 with nmh-1.0.4
To: Josh Tiefenbach <josh@zipperup.org>
Cc: Koji Hino <hino@ccrl.sj.nec.com>, stable@FreeBSD.ORG
Subject: Re: 4.5-RC1: Why sshd require opie for SSH version 2? 
In-reply-to: <20020116155436.A28166@zipperup.org> 
References: <20020116.110509.05717273.hino@ccrl.sj.nec.com> <20020116155436.A28166@zipperup.org>
Comments: In-reply-to Josh Tiefenbach <josh@zipperup.org>
   message dated "Wed, 16 Jan 2002 15:54:36 -0500."
From: "Bruce A. Mah" <bmah@FreeBSD.ORG>
Reply-To: bmah@FreeBSD.ORG
X-Face: g~c`.{#4q0"(V*b#g[i~rXgm*w;:nMfz%_RZLma)UgGN&=j`5vXoU^@n5<Pi&akO)o^8;[r
 %l(8ZHlbF`dD>v4:OO)c["!w)nD/!!~e4Sj7LiT'6*wZ83454H""lb{CC%T37O!!'S$S&D}sem7I[A
 2V%N&+
X-Image-Url: http://www.employees.org/~bmah/Images/bmah-cisco-small.gif
X-Url: http://www.employees.org/~bmah/
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Thu, 17 Jan 2002 08:34:51 -0800
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

If memory serves me right, Josh Tiefenbach wrote:
> > After doing some tests, I found that connecting to this 4.5-RC1 box
> > from other machine by OpenSSH (without RSA/DSA key, nor rhost*auth,
> > assuming to use plain password to login), requires opie to login,
> > though /etc/opiekeys, and /etc/skeykeys are both size 0. If I start
> > openssh with flag '-1', which means to use OpenSSH version 1 protocol,
> > it works fine: require plain password. I checked 4.4-RELEASE machine,
> > and found that it works fine without '-1' flag, and even with '-2', it
> > works.

[snip]

> Perhaps its an OpenSSH v3 thing? If I have some time tonite, I'll go compile
> up v3 someplace and check it out.

Did you get a chance to do this?

I'm unable to reproduce this problem between two RELENG_4 machines
running the base system OpenSSH (both machines built within the last
three days).  Usually I use a DSA keypair to authenticate, but I
temporarily blew away ~/.ssh/authorized_keys2 on the server side and ~/
.ssh/id_dsa on the client side.

Bruce.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message