Subject: Re: ssh and key_verify failed for server_host_key
To: None <>
From: Thilo Manske <Thilo.Manske@HEH.Uni-Oldenburg.DE>
List: current-users
Date: 05/03/2001 17:04:18
On Thu, May 03 2001 at 16:21:33 +0200, Sean Doran wrote:
>   Whenever I use ssh (-current client) to talk to a host (NetBSD
> or otherwise) where protocol 2 is available, I get the error
> "key_verify failed for server_host_key".  I'm stumped - does anyone
> know what causes this?  (I can work around it by forcing use of
> protocol 1 by the client).

I guess the error message means SSH protocol version 2 server keys are missing
on the remote system. The in-tree ssh client tries protocol 2 first.
(At least NetBSD's ssh server and client use different key sets for SSH protocol
version 1 and 2.)

For NetBSD system I suggest updating /etc/rc.d/sshd and then stopping and
starting sshd (with that script). That should automatigically create missing
key pairs.

For systems you don't control you can put something like

	Protocol 1,2

in your ~/.ssh/config to force it to try protocol version 1 first and then 2 for
that specific host.

And if you want public key authentification to work with protocol 2, please
read the section "SSH Protocol Version 2" in the ssh manpage and
ssh-keygen's manpage. :-)

Dies ist Thilos Unix Signature! Viel Spass damit.