Re: OpenSSH Assistance - New Admin
- From: Günther Schwarz <strap@xxxxxx>
- Date: Mon, 29 Sep 2008 21:14:30 +0200
Maxwell wrote:
Sealg <sealgair03@xxxxxxxxx> writes:
The first thing I was told was to upgrade our SSH server. Since the
upgrade on friday no one can log into it. Not even as root on
localhost. Here is the -vv
If a user tries to connect to the upgraded service, they should get a
warning that the certificates have changed.
He or she won't get a warning. The connection will simply break like the
one the OP posted. He might check if he changed the keys in /etc/ssh
during the upgrade. If so, the entries for the server in the
ssh_known_hosts files on the clients have to be deleted prior to a new
login. Because of the security problem with OpenSSL on Debian [1] it
might be risky to restore the old keys from backup.
{1] http://lists.debian.org/debian-security-announce/2008/msg00152.html
Günther
.
- Follow-Ups:
- Re: OpenSSH Assistance - New Admin
- From: Joe Pfeiffer
- Re: OpenSSH Assistance - New Admin
- References:
- OpenSSH Assistance - New Admin
- From: Sealg
- Re: OpenSSH Assistance - New Admin
- From: Maxwell Lol
- OpenSSH Assistance - New Admin
- Prev by Date: Re: OpenSSH Assistance - New Admin
- Next by Date: Re: setting up lax security on one ethernet interface while leaving the other strict
- Previous by thread: Re: OpenSSH Assistance - New Admin
- Next by thread: Re: OpenSSH Assistance - New Admin
- Index(es):
Relevant Pages
|
