HPE Community
Operating System - HP-UX
1833291 Members
2821 Online
110051 Solutions
New Discussion

ssh for HP-UX 11.0 error message.

 
SOLVED
Go to solution
jerry1
Super Advisor

‎03-21-2007 09:48 AM

‎03-21-2007 09:48 AM

ssh for HP-UX 11.0 error message.

I installed openssh and openssl for
HP-UX 11.0 and I get this message when
trying any ssh commands.

# ssh admin1
PRNG is not seeded

# ssh-keygen -t dsa
PRNG is not seeded
0 Kudos
Reply
6 REPLIES 6
Bob E Campbell
Honored Contributor

‎03-21-2007 10:50 AM

‎03-21-2007 10:50 AM

Solution

Re: ssh for HP-UX 11.0 error message.

Where did you get openssh and openssl? It appears that you either need to configure your random number generator or the random number generator is missing. I would hope that the documentation of the products would list either a dependency or a configuration step.
Reply
jerry1
Super Advisor

‎03-21-2007 10:59 AM

‎03-21-2007 10:59 AM

Re: ssh for HP-UX 11.0 error message.

That's what I have been reading on other
posts, about random number generator.
But I don't see any /dev/random on 11i boxes.

I downloaded openssl and openssh from:

http://mirrors.develooper.com/hpux/downloads.html#hpux1100
0 Kudos
Reply
Jim Keeble
Trusted Contributor

‎03-22-2007 11:57 PM

‎03-22-2007 11:57 PM

Re: ssh for HP-UX 11.0 error message.

First, if you are using HP's Secure Shell product, you don't need a PRNG device. It uses a shell script to come up with a seed.

So does 11iV1 (11.11), but it will use /dev/random if you download and install the Strong Random Number Generator product from software.hp.com. The /dev/random option is much much faster.

HP-UX 11iV2 (11.23) and 11iV3 (11.31) come with both products preloaded.

The HP Secure Shell product for 11.0 is no longer on the software.hp.com site, as 11.0 is now obsolete. The response center can supply a depot, for now, in case you cannot upgrade the OS.

Hope this helps.
Reply
jerry1
Super Advisor

‎03-30-2007 07:16 AM

‎03-30-2007 07:16 AM

Re: ssh for HP-UX 11.0 error message.

This is an HP-UX 11.0 system.

Anyone have any ideas at all about how
to get ssh to work?
0 Kudos
Reply
Matti_Kurkela
Honored Contributor

‎03-30-2007 07:52 AM

‎03-30-2007 07:52 AM

Re: ssh for HP-UX 11.0 error message.

You could try using "openssl rand -rand -base64 20" to manually seed the Pseudo-Random Number Generator of the openssl package. You can pick any file you want for , but it should be at least several kilobytes long and relatively random in content (gzipped archive files are reasonably good; text files less so).

As a side effect, it will output 20 random bytes in a base64-encoded printable form. At this time, however, we're mainly interested in seeding that PRNG.

This may cause a random seed file $HOME/.rnd to be created; ensure that creation of this file is not prevented.

The OpenSSL library uses this as the seed for its PRNG, and SSH and its associated tools use the random number generator of the OpenSSL library.
MK
Reply
Court Campbell
Honored Contributor

‎03-30-2007 07:57 AM

‎03-30-2007 07:57 AM

Re: ssh for HP-UX 11.0 error message.

I did some googling and found this site:

http://www.josvisser.nl/hpux11-random/

good luck.
"The difference between me and you? I will read the man page." and "Respect the hat." and "You could just do a search on ITRC, you don't need to start a thread on a topic that's been answered 100 times already." Oh, and "What. no points???"
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.