Package: openssh-server Version: 4.3p2-9 Severity: important A 'clean' install of openssh-server package doesn't generate server keys, presumably due to changes in how ssh-keygen works. Here's a typescript log of the installation (cleaned up a bit, of course):
Script started on Wed 27 Feb 2008 11:11:42 AM CST phoenix:/home/dave# apt-get install openssh-server Reading package lists... Done Building dependency tree... Done Suggested packages: ssh-askpass xbase-clients rssh molly-guard The following NEW packages will be installed: openssh-server 0 upgraded, 1 newly installed, 0 to remove and 1 not upgraded. Need to get 222kB of archives. After unpacking 569kB of additional disk space will be used. Get:1 http://mirrors.kernel.org etch/main openssh-server 1:4.3p2-9 [222kB] Fetched 222kB in 10s (20.4kB/s) Preconfiguring packages ... Selecting previously deselected package openssh-server. (Reading database ... 24493 files and directories currently installed.) Unpacking openssh-server (from .../openssh-server_1%3a4.3p2-9_i386.deb) ... Setting up openssh-server (4.3p2-9) ... Creating SSH2 RSA key; this may take some time ...illegal option -- f Usage: ssh-keygen [options] [key1 key2 ...] Where `options' are: -b nnn Specify key strength in bits (e.g. 1024) -t dsa | rsa Choose the key type. -c comment Provide the comment. -e file Edit the comment/passphrase of the key. -p passphrase Provide passphrase. -P Assume empty passphrase. -? -h Print this help text. -q Suppress the progress indicator. -1 Convert a SSH 1.x key. -i file Load and display information on `file'. -D file Derive the public key from the private key 'file'. -B number The number base for displaying key information (default 10). -V Print ssh-keygen version number. -r file Stir data from file to random pool. -F file Dump fingerprint of file. Creating SSH2 DSA key; this may take some time ...illegal option -- f Usage: ssh-keygen [options] [key1 key2 ...] Where `options' are: -b nnn Specify key strength in bits (e.g. 1024) -t dsa | rsa Choose the key type. -c comment Provide the comment. -e file Edit the comment/passphrase of the key. -p passphrase Provide passphrase. -P Assume empty passphrase. -? -h Print this help text. -q Suppress the progress indicator. -1 Convert a SSH 1.x key. -i file Load and display information on `file'. -D file Derive the public key from the private key 'file'. -B number The number base for displaying key information (default 10). -V Print ssh-keygen version number. -r file Stir data from file to random pool. -F file Dump fingerprint of file. Could not load host key: /etc/ssh/ssh_host_rsa_key Could not load host key: /etc/ssh/ssh_host_dsa_key Restarting OpenBSD Secure Shell server: sshd Could not load host key: /etc/ssh/ssh_host_rsa_key Could not load host key: /etc/ssh/ssh_host_dsa_key . phoenix:/home/dave# exit Script done on Wed 27 Feb 2008 11:12:08 AM CST This can be worked around by generating the appropriate keys manually, but it's always nice to have these things done by the installer when possible. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-5-686 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
