From owner-freebsd-questions Tue Feb 6 9:53:55 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.ruraltel.net (mail1.ruraltel.net [24.225.0.33]) by hub.freebsd.org (Postfix) with ESMTP id 3F6E537B4EC for ; Tue, 6 Feb 2001 09:53:35 -0800 (PST) Received: from darryl ([24.225.30.244]) by mail.ruraltel.net (Post.Office MTA v3.5.3 release 223 ID# 0-68608U15000L4100S0V35) with SMTP id net; Tue, 6 Feb 2001 11:52:51 -0600 Reply-To: From: "Darryl Hoar" To: "'Joe Guetler'" Cc: Subject: RE: sshd -continued Date: Tue, 6 Feb 2001 11:56:24 -0600 Message-ID: <003401c09066$1f5f5820$0701a8c0@darryl> MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook CWS, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <3A801700.CE9AD15E@axiomadvertising.com> X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Well, I am making some headway. When I launch putty, I now get this: sent username darryl Trying public key authentication no pass phrase required couldn't load public key from c:\identity.pub darryl@bigdog's password: If I enter my normal password (not passphrase), I get logged in. Any ideas what I don't have right ? I did (on the sshd machine) ssh-keygen -f /etc/ssh/ssh_host_key I did not do ssh-keygen -d -f /etc/ssh_host_dsa_key because -d is not valid (even checked the man page). thanks, Darryl -----Original Message----- From: Joe Guetler [mailto:joe@axiomadvertising.com] Sent: Tuesday, February 06, 2001 9:24 AM To: darryl@osborne-ind.com Subject: Re: sshd -continued Kris is probably right when he said you have to add the port, but if yo haven't made host keys you should do that too. try 'ssh-keygen -f /etc/ssh/ssh_host_key' and 'ssh-keygen -d -f /etc/ssh_host_dsa_key'. Make sure you don't enter any passphrases. Restart sshd. that should create your host keys. then you either have to install the free RSA port, or you could try using another encrytion scheme, aka Blowfish, in putty. I can't remeber if you can choose different choose different schemes in putty, as I don't have it in front of me. Hopefully I'm getting this right, it's been awhile since I set my sshd up. Joe Darryl Hoar wrote: > sorry to be a bother, > I reread the man page. When I ran ssh-keygen, it > asked me all the questions. Created the identitiy and > identity.pub files (key pair ?) in my .ssh/ directory. > > do I need to copy identity.pub to my win32 box , and > then load that in putty ? > > do I need to use puttygen to create a new RSA key ? > > thanks, > Darryl > > -----Original Message----- > From: Joe Guetler [mailto:joe@axiomadvertising.com] > Sent: Monday, February 05, 2001 4:53 PM > To: darryl@osborne-ind.com > Subject: Re: sshd -continued > > have you made a host key pair? sshd has nothing to exchange with putty if > you haven't. If you look at the config file sshd_config in /etc/ssh, sshd > looks for the RSA host key to be ssh_host_key and the DSA host key to be > ssh_host_dsa_key. Reread man ssh-keygen and pay special attention to the > second and third paragraphs under the description section to figure out > how to generate them. (also take note of the -f flag) > > Hope that helps. > > Joe Guetler > > Darryl Hoar wrote: > > > Greetings, > > still running 4.0-release. I have sshd started on my Freebsd box. > > I logged in as me and did ssh-genkey. This created the directory > > /home/darryl/.ssh and placed two files in it (identity, identity.pub). > > > > I then started putty on my win32 box, specified my sshd hostname, > > and ... nothing. On the Freebsd box, I received: fatal > > rsa_private_decrypt() > > failed. I tried generating a RSA key with putty, and using that. Same > > problem. > > > > I'm not sure I understand the keys. How do I get this to work ? > > > > thanks, > > Darryl > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message