Re: Rekeying Problem

Tatu Ylonen Wed, 07 Feb 2001 11:34:49 -0800
I was just told by Sami Lehtinen <[EMAIL PROTECTED]> that this has been fixed in
our current source tree, and the fix will be included the next release.
(Strangely enough, I have never encountered the problem even though I use
ssh-2.4.0 all the time.  Perhaps this probably relates to the particular
platforms or authentication methods used, or something...)

Before the next release, adding the "RekeyIntervalSeconds 0" option in
/etc/sshd2_config and /etc/ssh2_config is a good fix if you get hit by
this.

    Tatu

-- 
SSH Communications Security           http://www.ssh.com/
SSH IPSEC Toolkit                     http://www.ipsec.com/
SSH(R) Secure Shell(TM)               http://www.ssh.com/ssh

On Tue, 6 Feb 2001, Christophe Dupre wrote:

> 
> I had been told that this was fixed with SSH 2.4. However, we installed
> that version on all of our workstations here (mix of Solaris, Linux and
> Irix) and we still have the problem. A temporary fix is to add the
> following line in both client and server configuration file:
> 
> ReKeyIntervalSeconds            0
> 
> Good luck!
> 
> On Tue, 6 Feb 2001, Peter Schwenk wrote:
> 
> > Hello:
> > 
> > I'm running ssh-2.3.0 (from ssh.com) on a bunch of Solaris 7 boxes, and
> > there seems to be a problem with rekeying.  After the time interval is
> > up, I get a message similar to the following:
> > 
> > Host key not found from database.
> > Key fingerprint:
> > xucip-casep-dazup-tilep-pebim-bimid-zidyz-narun-rufyf-lozas-kixox
> > You can get a public key's fingerprint by running
> > % ssh-keygen -F publickey.pub on the keyfile.
> > FATAL: sshreadline.c:1778 SshReadLine ssh_readline_eloop_internal
> > Precondition failed: rl
> > 
> > and the connection dies.  All the machines have the same pile of
> > /etc/ssh2/hostkeys and /etc/ssh2/knownhosts files, so they all know
> > about each other's keys, plus the connection went through without
> > problems in the first place.  The 'host key not found from database'
> > message is confusing in light of this.  Does anyone have any ideas about
> > what might be going wrong?
> > 
> > 
> > --
> > PETER SCHWENK                        | Campus IT Associate 3
> > Department of Mathematical Sciences  | University of Delaware
> > [EMAIL PROTECTED]                | (302)831-0437
> > 
> > 
> > 
> 
> ---
> Christophe Dupre
> 
> "When all else fails, so will your computer"  -  Murphy
> 
> -----BEGIN GEEK CODE BLOCK-----
> Version: 3.12
> GCS d- s:++ a-- C++ ULS++++$ UI++ UH++>++++ P++ L+++ !E W N+ o? K w++>--
> O M+ V-- PS+ PE+ Y+ PGP+ t+ 5+ X+ R tv+ b++ DI+ D+ G+ e++ h--- r++ z+
> ------END GEEK CODE BLOCK------
>
Re: Rekeying Problem

Reply via email to
