[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

FYI: sshd stuff

To: OpenBSD Tech <tech@openbsd.org>
Subject: FYI: sshd stuff
From: Marco S Hyman <marc@snafu.org>
Date: Tue, 05 Oct 1999 23:10:40 -0700

Just a couple of gotchas for people using sshd on -current.  If
you're trying to use the OpenBSD sshd with an existing 1.2.27
/etc/sshd_config you'll have to

1) comment out or remove "RandomSeed /etc/ssh_random_seed"
2) comment out or remove "UseLogin no"
3) comment out or remove "CheckMail no"

The OpenBSD sshd will bitch about 1) and abort if 2) or 3) are
detected.

Also, X11 forwarding between current sshd and the OpenBSD sshd
does not work.   Thus something like this:

	ssh -n host.com xterm -geometry 80x36

from a host running ssh 1.2.27 does not work.  You'll have to do
something like

	xterm -geometry 80x36 -e ssh host.com

and ignore the message that says:

   Warning: Denied agent forwarding because the other end has too old version

One more thing.   It seems the OpenBSD sshd creates a new X11 auth file
for each connection (I may be full of crap on this one).  A side effect
is "X11 connection rejected because of wrong authentication..." messages.
Haven't figured out what this means in real life.

// marc

Follow-Ups:
- Re: FYI: sshd stuff
  - From: Theo de Raadt <deraadt@cvs.openbsd.org>

Prev by Date: 2.5 pmax
Next by Date: Re: FYI: sshd stuff
Prev by thread: Re: 2.5 pmax
Next by thread: Re: FYI: sshd stuff
Index(es):
- Date
- Thread