SSH with Public Key Authentication
david bryce
davidbryce at fastmail.fm
Wed Feb 1 20:18:35 PST 2006
> > What about on the freebsd server side? Are there any logfiles I can
> > look at on the server? Thanks!
>
> I often find it more useful to temporarily run a second sshd on an
> alternate port, with stderr directed to the console and sshd in
> no-detach and debug mode. Try the following:
>
> $ sshd -d -d -d -e -D -p 222
>
> Then watch the output as you try to connect on that port
>
> $ sshd myhost -p 222
>
> If you'd like, you can redirect the output to a file, too, but I
> find that screen(1)'s scrollback usually is enough for me.
>
> --
>
> o--------------------------{ Will Maier }--------------------------o
> | jabber:..wcmaier at jabber.ccc.de | email:..........wcmaier at ml1.net
> |
> | \.........wcmaier at cae.wisc.edu | \..........wcmaier at cae.wisc.edu
> |
> *------------------[ BSD Unix: Live Free or Die ]------------------*
Thanks, Will! I think we're finally getting somewhere! The
output from this:
debug2: read_server_config: filename /etc/ssh/sshd_config
debug1: sshd version OpenSSH_3.8.1p1 FreeBSD-20040419
Could not load host key: /etc/ssh/ssh_host_dsa_key
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.
Then I tried doing a
"/usr/local/bin/ssh-keygen -t dsa /etc/ssh/ssh_host_dsa_key".
Is this the right way to do it?
Probably not, because then I got:
debug2: read_server_config: filename /etc/ssh/sshd_config
debug1: sshd version OpenSSH_3.8.1p1 FreeBSD-20040419
debug3: Not a RSA1 key file /etc/ssh/ssh_host_dsa_key.
debug1: PEM_read_PrivateKey failed
debug1: read PEM private key done: type <unknown>
Could not load host key: /etc/ssh/ssh_host_dsa_key
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.
Doing a
"/usr/local/bin/ssh-keygen -t rsa /etc/ssh/ssh_host_dsa_key"
didn't seem to make much difference.
Any ideas what to try next? Thank you!
Regards,
DB
--
david bryce
davidbryce at fastmail.fm
--
http://www.fastmail.fm - Email service worth paying for. Try it for free
More information about the freebsd-questions
mailing list