Productive Linux


 Subscribe via Feedburner in a reader

Enter your email address:

Delivered by FeedBurner


Don't have an account?
Sign up to
Forgot your password?

Server Refuses to Accept Login
2 December 2008 @ 22:22 GMT
by Paul

I've had trouble with my server not accepting public key authorization. 'auth.log' was claiming that certain keys were blacklisted. WTF? The man page for 'ssh-vulnkey' explains:

A substantial number of keys are known to have been generated using a broken version of OpenSSL distributed by Debian which failed to seed its random number generator correctly. Keys generated using these OpenSSL versions should be assumed to be compromised. This tool may be useful in checking for such keys.

Keys that are compromised cannot be repaired; replacements must be generated using ssh-keygen(1). Make sure to update authorized_keys files on all systems where compromised keys were permitted to authenticate.

So, that's what I did. I also had to remove some of the '.ssh/known_hosts' files.

Comments disabled