Browse Source

The earlier commit ea119211b2 removed 'dsa' as one of the ssh_host_*_key

types that got generated.  Problem was that it didn't remove that key
as one of the paths that the server looks for by default.  As a
consequence, your log file might fill up with messages like:

    2017-06-01T15:43:07-06:00 openwrt sshd[31929]: error: Could not load host key: /etc/ssh/ssh_host_dsa_key

The patch is forunately trivial.  Don't set the path for the dsa
key file in the server configuration.

Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
Signed-off-by: Peter Wagner <tripolar@gmx.at>
lilik-openwrt-22.03
Peter Wagner 8 years ago
parent
commit
325b7d2cd2
2 changed files with 14 additions and 1 deletions
  1. +1
    -1
      net/openssh/Makefile
  2. +13
    -0
      net/openssh/patches/900-remove-dsa-key-file-patch.patch

+ 1
- 1
net/openssh/Makefile View File

@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk
PKG_NAME:=openssh
PKG_VERSION:=7.5p1
PKG_RELEASE:=1
PKG_RELEASE:=2
PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz
PKG_SOURCE_URL:=https://ftp.openbsd.org/pub/OpenBSD/OpenSSH/portable/ \


+ 13
- 0
net/openssh/patches/900-remove-dsa-key-file-patch.patch View File

@ -0,0 +1,13 @@
--- a/servconf.c 2017-03-19 20:39:27.000000000 -0600
+++ b/servconf.c 2017-06-01 19:12:51.338645002 -0600
@@ -201,8 +201,10 @@
/* fill default hostkeys for protocols */
options->host_key_files[options->num_host_key_files++] =
_PATH_HOST_RSA_KEY_FILE;
+#if 0
options->host_key_files[options->num_host_key_files++] =
_PATH_HOST_DSA_KEY_FILE;
+#endif
#ifdef OPENSSL_HAS_ECC
options->host_key_files[options->num_host_key_files++] =
_PATH_HOST_ECDSA_KEY_FILE;

Loading…
Cancel
Save