I just did a src upgrade from a recent 4.8-RC to 4.8-RELEASE and I'm now having trouble with ssh v2. I cannot ssh to any host from this machine. I can ssh from another host to this machine using v2 successfully. When trying to ssh to anywhere from this machine I get. [jsatter@bishop:~] ssh -v localhost OpenSSH_3.5p1 FreeBSD-20030201, SSH protocols 1.5/2.0, OpenSSL 0x0090701f debug1: Reading configuration data /etc/ssh/ssh_config debug1: Rhosts Authentication disabled, originating port will not be trusted. debug1: ssh_connect: needpriv 0 debug1: Connecting to localhost [::1] port 22. socket: Protocol not supported debug1: Connecting to localhost [127.0.0.1] port 22. debug1: Connection established. debug1: identity file /home/jsatter/.ssh/identity type -1 debug1: identity file /home/jsatter/.ssh/id_rsa type -1 debug1: identity file /home/jsatter/.ssh/id_dsa type -1 debug1: Remote protocol version 1.99, remote software version OpenSSH_3.5p1 FreeBSD-20030201 debug1: match: OpenSSH_3.5p1 FreeBSD-20030201 pat OpenSSH* debug1: Enabling compatibility mode for protocol 2.0 debug1: Local version string SSH-2.0-OpenSSH_3.5p1 FreeBSD-20030201 debug1: SSH2_MSG_KEXINIT sent debug1: SSH2_MSG_KEXINIT received debug1: kex: server->client aes128-cbc hmac-md5 none debug1: kex: client->server aes128-cbc hmac-md5 none debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP debug1: dh_gen_key: priv key bits set: 126/256 debug1: bits set: 1649/3191 debug1: SSH2_MSG_KEX_DH_GEX_INIT sent debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY debug1: Host 'localhost' is known and matches the DSA host key. debug1: Found key in /home/jsatter/.ssh/known_hosts:8 debug1: bits set: 1599/3191 debug1: ssh_dss_verify: signature incorrect key_verify failed for server_host_key debug1: Calling cleanup 0x804c158(0x0) I've regenerated all the rsa and dsa keys here and I get no change. ssh -1 works correctly. James.
On Tue, Apr 01, 2003 at 09:29:25AM -0800, James Satterfield wrote:> I just did a src upgrade from a recent 4.8-RC to 4.8-RELEASE and I'm now > having trouble with ssh v2. I cannot ssh to any host from this machine. I can > ssh from another host to this machine using v2 successfully. When trying to > ssh to anywhere from this machine I get.i found this article, hopefully it helps: http://linux390.3atec.com/mailling/2003-01/msg00493.html searching google for "ssh_dss_verify signature incorrect" brings up a lot of articles. toni -- Behandle die Menschen, als w?ren sie, was sie sein | toni@stderror.at sollten, und du wirst ihnen helfen, zu werden, was | Toni Schmidbauer sie sein k?nnen. - Johann Wolfgang von Goethe | -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20030403/154e314a/attachment.bin