[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ITP: sftp



On Thu, Apr 20, 2000 at 09:36:51PM +0200, Gergely Madarasz wrote:

> Nope, first, this is a problem in openssh, not ssh,

4. Warning messages about key lengths

I belive you are wrong about that...

---> from http://violet.ibs.com.au/openssh/files/UPGRADING <---
4. Warning messages about key lengths

Commercial SSH's ssh-keygen program contained a bug which caused it to
occasionally generate RSA keys which had their Most Significant Bit
(MSB) unset. Such keys were advertised as being full-length, but are
actually only half as secure.

OpenSSH will print warning messages when it encounters such keys. To
rid yourself of these message, edit you known_hosts files and replace
the incorrect key length (usually "1024") with the correct key length
(usually "1023").
---> end <---

> second hsftp should
> work nonetheless, just as everything else works

IIRC sshd will _not_ let you connect with a wrong key length.

-- 
Best regards,
David Jack Olrik <david@olrik.dk>     http://david.olrik.dk
GnuPG key C290 0A4A 0CCC CBA8 2B37 E18D 01D2 F6EF 2E61 9894
[ GNU Software: 'The source will be with you ... Always!' ]

Attachment: pgphhP5j5W09q.pgp
Description: PGP signature


Reply to: