Discussion:
ssh 6.6.1, PubkeyAcceptedKeyTypes
(too old to reply)
Mauricio Tavares
2016-05-11 14:17:35 UTC
Permalink
So I add the line

PubkeyAcceptedKeyTypes +ssh-dss

to my opensshd_config file. When I restart sshd, I am told that

May 11 09:33:14 pickles systemd: Started OpenSSH Server Key Generation.
May 11 09:33:14 pickles systemd: Started OpenSSH server daemon.
May 11 09:33:14 pickles systemd: Starting OpenSSH server daemon...
May 11 09:33:14 pickles sshd: /etc/ssh/sshd_config: line 156: Bad
configuration option: PubkeyAcceptedKeyTypes
May 11 09:33:14 pickles sshd: /etc/ssh/sshd_config: terminating, 1 bad
configuration options
May 11 09:33:14 pickles systemd: sshd.service: main process exited,
code=exited, status=255/n/a
May 11 09:33:14 pickles systemd: Unit sshd.service entered failed state.
May 11 09:33:14 pickles systemd: sshd.service failed.

Don't think I made a typo but that has not been the first time. What
else could I be missing here? This is openssh 6.6.1 in RHELS 7.2
Ben Lindstrom
2016-05-11 14:56:40 UTC
Permalink
Unless it was backported "PubkeyAcceptedKeyTypes" it only exists in 7.0+
OpenSSH.

From OpenSSH 7.0 release notes:

"New Features
------------

* ssh_config(5): add PubkeyAcceptedKeyTypes option to control which
public key types are available for user authentication."


- Ben
Post by Mauricio Tavares
So I add the line
PubkeyAcceptedKeyTypes +ssh-dss
to my opensshd_config file. When I restart sshd, I am told that
May 11 09:33:14 pickles systemd: Started OpenSSH Server Key Generation.
May 11 09:33:14 pickles systemd: Started OpenSSH server daemon.
May 11 09:33:14 pickles systemd: Starting OpenSSH server daemon...
May 11 09:33:14 pickles sshd: /etc/ssh/sshd_config: line 156: Bad
configuration option: PubkeyAcceptedKeyTypes
May 11 09:33:14 pickles sshd: /etc/ssh/sshd_config: terminating, 1 bad
configuration options
May 11 09:33:14 pickles systemd: sshd.service: main process exited,
code=exited, status=255/n/a
May 11 09:33:14 pickles systemd: Unit sshd.service entered failed state.
May 11 09:33:14 pickles systemd: sshd.service failed.
Don't think I made a typo but that has not been the first time. What
else could I be missing here? This is openssh 6.6.1 in RHELS 7.2
_______________________________________________
openssh-unix-dev mailing list
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
Mauricio Tavares
2016-05-11 15:00:29 UTC
Permalink
Post by Ben Lindstrom
Unless it was backported "PubkeyAcceptedKeyTypes" it only exists in 7.0+
OpenSSH.
Another mystery solved. Thanks!

Is there a way to fake that in 6.6, specially within a match block?
Post by Ben Lindstrom
"New Features
------------
* ssh_config(5): add PubkeyAcceptedKeyTypes option to control which
public key types are available for user authentication."
- Ben
Post by Mauricio Tavares
So I add the line
PubkeyAcceptedKeyTypes +ssh-dss
to my opensshd_config file. When I restart sshd, I am told that
May 11 09:33:14 pickles systemd: Started OpenSSH Server Key Generation.
May 11 09:33:14 pickles systemd: Started OpenSSH server daemon.
May 11 09:33:14 pickles systemd: Starting OpenSSH server daemon...
May 11 09:33:14 pickles sshd: /etc/ssh/sshd_config: line 156: Bad
configuration option: PubkeyAcceptedKeyTypes
May 11 09:33:14 pickles sshd: /etc/ssh/sshd_config: terminating, 1 bad
configuration options
May 11 09:33:14 pickles systemd: sshd.service: main process exited,
code=exited, status=255/n/a
May 11 09:33:14 pickles systemd: Unit sshd.service entered failed state.
May 11 09:33:14 pickles systemd: sshd.service failed.
Don't think I made a typo but that has not been the first time. What
else could I be missing here? This is openssh 6.6.1 in RHELS 7.2
_______________________________________________
openssh-unix-dev mailing list
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
Loading...