Hello openssh-unix-dev list members, This is related to my previous post, but I need to ask specific questions. I'm building openssh with iPhone Toolchain (http://wikee.iphwn.org/howto:toolchain_on_leopard_aspen) for iPhone 2.1 firmware. This is not an iPhone mailing list, but probably anyone with deep knowledge of openssh could give a hint. So this is what I do: 1. I patch the files using Saurik's patches from http://svn.telesphoreo.org/trunk/data/openssh 1. I added the appropriate CFLAGS and LDFLAGS for arm-apple-darwin. 2. I changed the path on configure.ac to point to my own build of libcrypto.a (using http://svn.telesphoreo.org/trunk/data/openssl, with the same methods). 3. I did autoconf 4. configure --prefix=/path/to/ssh --host=arm-apple-darwin 5. make 6. Since there are some things that have to be done on iPhone in the makefile script, I did make install on iPhone. 7. when it got to the point of: root# /path/to/ssh/sshd -t -f /path/to/ssh/etc/sshd_config @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Permissions 0140 for '(null)' are too open. It is recommended that your private key files are NOT accessible by others. This private key will be ignored. bad permissions: ignore key: /path/to/ssh/etc/ssh_host_rsa_key Could not load host key: /path/to/ssh/etc/ssh_host_rsa_key @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: UNPROTECTED PRIVATE KEY FILE! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ Permissions 0136 for '(null)' are too open. It is recommended that your private key files are NOT accessible by others. This private key will be ignored. bad permissions: ignore key: /path/to/ssh/etc/ssh_host_dsa_key Could not load host key: /path/to/ssh/etc/ssh_host_dsa_key Disabling protocol version 2. Could not load host key sshd: no hostkeys available -- exiting. I'm confused as to why it's pointing to a NULL file ? Jesse Armand ---------------------------------------- (http://jessearm.blogspot.com)
Thanks Chris,
I already did that, I think the problem is with the filename parameter in:
Key * key_load_private(const char *filename, const char *passphrase,
char **commentp)
{
....
}
This function returns NULL.
I'm not sure why it's pointing to a null filename, as I don't change
anything in the code.
I only add a prefix to configure, even though I did this on iPhone, do
you think this problem is related to platform differences ?
Jesse Armand
----------------------------------------
(http://jessearm.blogspot.com)
On Thu, Oct 9, 2008 at 6:45 PM, Christian Pfaffel-Janser
<christian.pfaffel-janser at siemens.com> wrote:> Jesse Armand wrote:
> Hi Jesse,
>
> Make sure that You do something like
>
> chmod 0600 /path/to/ssh/etc/ssh_host_rsa_key
> chmod 0600 /path/to/ssh/etc/ssh_host_dsa_key
>
> ( I do not have an iphone, it's just a guess)
>
> Regards,
> Christian Pfaffel-Janser
>
>
Apparently Analagous Threads
- Problem with sshd host key checking, for my own build with custom prefix
- errors on getaddrinfo(): nodename nor servname provided, or not known
- Proposed patch: ssh-keygen allows writing to stdout for moduli generation
- PAM auth stage rejection not working
- Dummy account/extension