Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 26 Feb 2000 15:37:58 -0800 (PST)
From:      Kris Kennaway <kris@FreeBSD.org>
To:        Bjoern Groenvall <bg@sics.se>
Cc:        "Jordan K. Hubbard" <jkh@zippy.cdrom.com>, current@FreeBSD.ORG, markm@FreeBSD.ORG
Subject:   Re: OpenSSH /etc patch
Message-ID:  <Pine.BSF.4.21.0002261535380.98970-100000@freefall.freebsd.org>
In-Reply-To: <wu4saw6r20.fsf@bg.sics.se>

next in thread | previous in thread | raw e-mail | index | archive | help
On 26 Feb 2000, Bjoern Groenvall wrote:

> Right, the code does not lie (if ssh is setuid root). But, if the host
> key has not yet been created, then no host can have the public key and
> thus rsa-rhosts authentication won't work anyways. It is not required
> to run ssh-keygen to make ssh work, Sshd still requires the host key
> to operate.

I don't follow you - if no host key is generated, then you can't ever use
the RSA-rhosts authentication mechanism to log into another server until
you do. Thus part of ssh's functionality is broken until you generate that
key, so we do it for you the first time you boot.

Kris

----
"How many roads must a man walk down, before you call him a man?"
"Eight!"
"That was a rhetorical question!"
"Oh..then, seven!" -- Homer Simpson



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0002261535380.98970-100000>