Wednesday Sep 03, 2008

"no kex alg" on recent Nevada builds

I've begun to see "no kex alg" messages on trying to ssh into machines that were jumpstarted to the later Nevada/OpenSolaris builds.  After some googling, it seems that the OpenSolaris folk are working on how to get this work better. In the mean time, here is how I generate ssh keys on a machine where sshd doesn't accept my connection because it's ssh keys haven't been generated.

bash-3.2# ssh dn02
no kex alg
bash-3.2#
bash-3.2# rlogin dn02  #or get in through the service processor.
Password:
Last login: Wed Sep  3 12:39:03 from dn01
Sun Microsystems Inc.   SunOS 5.11      snv_96  November 2008
# bash
bash-3.2# /lib/svc/method/sshd -c
bash-3.2# svcadm refresh ssh
bash-3.2# exit
# Connection to dn02 closed.
bash-3.2#
bash-3.2# ssh dn02
The authenticity of host 'dn02 (10.6.141.112)' can't be established.
RSA key fingerprint is 0b:ec:fe:85:51:82:5e:df:c0:44:10:d3:79:67:49:ea.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'dn02,10.6.141.112' (RSA) to the list of known hosts.
Password:
Last login: Wed Sep  3 12:42:00 2008 from dn01
Sun Microsystems Inc.   SunOS 5.11      snv_96  November 2008
#

see http://opensolaris.org/jive/thread.jspa?messageID=176002 and http://defect.opensolaris.org/bz/show_bug.cgi?id=219

It's apparently fixed in OpenSolaris LiveCD - but the fix probably hasn't made it into Nevada, even though the diffs posted in the bug entry are available on my machine.


About

prashant

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today