Re: ssh issue after security upgrade

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Robert L. Harris wrote:




I just upgraded SSH on two hosts due to the security vulnerability.  The
remote machine is Debian Woody running openssh-client 4.3p2-9, server is
the same level.  One of the two local machines is ubuntu gutsy running
1:4.6p1-5ubuntu0.5 for both client and server.  The other local machine
is debian sarge running: 3.8.1p1-8.sarg.


When i ssh from the remote machine to local I get:

debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
debug2: no key of type 0 for host harvard
debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts2
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts2
debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts
debug3: check_host_in_hostfile: filename /etc/ssh/ssh_known_hosts
debug2: no key of type 2 for host harvard
Host key verification failed.


~  I get the same message no matter which local machine I'm sshing to.  I
have a debian lenny box with which can connect successfully to both
local hosts.  I have removed /home/robert/.ssh/known_hosts on the
remote machine and I still get that entry.

~  Anyone have any ideas?


Read around the upgrade. Due to a potential vulnerability in the generated keys they are re-created new when you upgrade ssh. Check the new key is the right one and then accept it.

-h

--
Hari Sekhon


[Index of Archives]     [Open SSH Unix Development]     [Fedora Users]     [Fedora Desktop]     [Yosemite Backpacking]     [KDE Users]     [Gnome Users]

  Powered by Linux