Login or Register to Ask a Question and Join Our Community


Solaris

[urgent need help] SSH setup...

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Solaris [urgent need help] SSH setup...
# 1  
Old 02-05-2007
[urgent need help] SSH setup...
hi experts,

very need help, i had setup the SSH on solaris 8 and have generate the key but i have problem to start the sshd below is the error messages :

/etc/rc2.d/S97sshd start
Could not load host key: /usr/local/etc/ssh_host_key
Could not load host key: /usr/local/etc/ssh_host_rsa_key
Could not load host key: /usr/local/etc/ssh_host_dsa_key
Disabling protocol version 1. Could not load host key
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.

please advices

very appreciate for the help

thank you so much


Best Regards,

bucci
# 2  
Old 02-05-2007
Quote:
Originally Posted by bucci
hi experts,

very need help, i had setup the SSH on solaris 8 and have generate the key but i have problem to start the sshd below is the error messages :

/etc/rc2.d/S97sshd start
Could not load host key: /usr/local/etc/ssh_host_key
Could not load host key: /usr/local/etc/ssh_host_rsa_key
Could not load host key: /usr/local/etc/ssh_host_dsa_key
Disabling protocol version 1. Could not load host key
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.

please advices

very appreciate for the help

thank you so much


Best Regards,

bucci
http://www.unixguide.net/sun/ssh_installation.shtml states a example of the same problem. This is generate due to the fact that there is no key pair generated. please check again if the key pair is generated.

Also take a look at how to generate the keys.

Regards,
Johan Louwers.
# 3  
Old 02-05-2007
Quote:
Originally Posted by suntac
http://www.unixguide.net/sun/ssh_installation.shtml states a example of the same problem. This is generate due to the fact that there is no key pair generated. please check again if the key pair is generated.

Also take a look at how to generate the keys.

Regards,
Johan Louwers.

hi suntac,

do you know about this error?

/etc/init.d/sshd start
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/usr/local/etc/asari@ovodapp_id_dsa.pub' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /usr/local/etc/asari@ovodapp_id_dsa.pub
Could not load host key: /usr/local/etc/asari@ovodapp_id_dsa.pub
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/usr/local/etc/asari@ovodapp_id_dsa.pub' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /usr/local/etc/asari@ovodapp_id_dsa.pub
Could not load host key: /usr/local/etc/asari@ovodapp_id_dsa.pub
Disabling protocol version 1. Could not load host key
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.


please advice

thank you so much


Regards,

bucci
# 4  
Old 02-05-2007
Quote:
Originally Posted by bucci
hi suntac,

do you know about this error?

/etc/init.d/sshd start
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/usr/local/etc/asari@ovodapp_id_dsa.pub' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /usr/local/etc/asari@ovodapp_id_dsa.pub
Could not load host key: /usr/local/etc/asari@ovodapp_id_dsa.pub
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: UNPROTECTED PRIVATE KEY FILE! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
Permissions 0644 for '/usr/local/etc/asari@ovodapp_id_dsa.pub' are too open.
It is recommended that your private key files are NOT accessible by others.
This private key will be ignored.
bad permissions: ignore key: /usr/local/etc/asari@ovodapp_id_dsa.pub
Could not load host key: /usr/local/etc/asari@ovodapp_id_dsa.pub
Disabling protocol version 1. Could not load host key
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.


please advice

thank you so much


Regards,

bucci
I think that everyone can view and change the file /usr/local/etc/asari@ovodapp_id_dsa.pub you have to change the security settings on the files.

Can you post the ls -la results on the directory?

Regards,
Johan Louwers.
# 5  
Old 02-05-2007
usually chmod-ing the file to 644 solves the problem.
edit: Please excuse me and don't get cofused ...my bad Smilie
The posts below me shows the correct permissions.
Last edited by sysgate; 02-06-2007 at 02:32 AM..
# 6  
Old 02-05-2007
Quote:
Originally Posted by sysgate
usually chmod-ing the file to 644 solves the problem.
The error shows that 644 is too open and that it's ignoring the keys. Change the key perms to 600 and try to start sshd again.

Carl
# 7  
Old 02-05-2007
Quote:
Originally Posted by sysgate
usually chmod-ing the file to 644 solves the problem.
We are dealing with exactly the opposite. Keys are not supposed to be readable by others. Therefore the permissions should be 600 as stated in another post.

When the key files are readable everyone could "steal" them and use your keys.
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Need help in ssh (URGENT)

Hi guys, I'm new to unix. I'm creating a small script which should fetch the server space details from different servers and it as a mail. Right now my script is working perfectly. But i have a problem in deploying it. I'm using the command ssh user@host 'df -h /app/directory' We are... (1 Reply)
Discussion started by: santhosh.kptm
1 Replies

2. Solaris

How can i setup ssh password-less login for particular user?

HI Community. I was trying to create ssh password less authentication for one user called night and it's not working for me. These are the steps I followed:- I have logged into the server and issued ssh-ketgen -t rsabash-3.2$ ssh-keygen -t rsa Generating public/private rsa key pair.... (4 Replies)
Discussion started by: bentech4u
4 Replies

3. Shell Programming and Scripting

Auto Remote SSH key setup

Hi Guys!! I am trying to get around the complex situation, i have a task to complete, Like to setup the remote SSH key automatically by providing the root login details, ip and ssh port once to the script input and once its tested and accepted the next ssh should be password less, script... (0 Replies)
Discussion started by: SilvesterJ
0 Replies

4. AIX

SSH Connection setup

Hi there, I would like to setup an ssh connection between the aix and the mainframes server. I would like to setup a script such that it wont ask the password every time when i try to connect the mainframes server from my unix box. If you guys provide the sample script that would really... (2 Replies)
Discussion started by: overnight
2 Replies

5. AIX

ssh public key setup questions.

Hi all, I have N number of AIX hosts, where I need to login frequently and do some routine tasks (run some scripts). I need to setup ssh public/private key, so I can auto-login via a master (wrapper) script and run each script in each server. I am trying to setup/generate ssh keys, but am... (6 Replies)
Discussion started by: haroon_a
6 Replies

6. Red Hat

SSH Prompts for Password After Keys Setup Successfully

I setup the keys between 2 servers, but my user account has no password specified for it (never set one up on the account for security reasons). When I try to SSH to the server, SSH prompts for a password that doesn't exist (so I can never connect successfully). Note: 'passwd -d Rynok' removes... (3 Replies)
Discussion started by: Rynok
3 Replies

7. Solaris

unable to setup network,urgent help needed!!

Hi all, I just bought a new system, but am unable to configure network on it.. am using a nge0 ethernet interface to login. i've tried all i knew but not of the webpages seem to open. Here is what i've done.. ifconfig nge0 plumb ifconfig -a (nge0) was being displayed as up and running. ... (23 Replies)
Discussion started by: wrapster
23 Replies

8. Cybersecurity

We need to setup up a SSH passthrough server.

I have been reading alot and we want to setup a secure ssh main login server that will handle logins for all our other servers. I have found some information but I need a really good rescource. Can anyone help? (1 Reply)
Discussion started by: chrchcol
1 Replies

9. Shell Programming and Scripting

How to setup SSH between 4 hosts ?

Hi, I logged into h0011awe server. I am executing a script on this server which connects to other 3 hosts (h0022sam, h0033jar, h0044orc). In the script the command are like this orapmon=`ssh $USR@$host ps -ef|grep -v grep|grep pmon` I am using secured shell. How to setup that between these... (2 Replies)
Discussion started by: dreams5617
2 Replies

10. Solaris

URGENT - setup port and dump all output to /dev/null or a file

Please help urgently. I need to setup up some sort of service on a solaris server on a port. I dont need it do anything special, anything that is sent to this port from an external server should be dump to /dev/null or a flat file.. Can you help urgently? (1 Reply)
Discussion started by: frustrated1
1 Replies
Login or Register to Ask a Question