eFa 5 Installation error - [eFa] - Error initializing system! Please try again...

[jlau]

I was installing eFa 5 on a brand new CentOS 9 Stream minimal install and ran into an issue during initial setup.
The script would fail at this point:

Code: Select all

[eFa] - Configuring hostname and domainname
[eFa] - Setting IP settings
[eFa] - Setting DNS
[eFa] - Generating SSH Host keys
Generating public/private rsa key pair.
Your identification has been saved in /etc/ssh/ssh_host_rsa_key
Your public key has been saved in /etc/ssh/ssh_host_rsa_key.pub
The key fingerprint is:
SHA256:[REMOVED FOR SECURITY]
The key's randomart image is:
[REMOVED FOR SECURITY]
unknown key type dsa
[eFa] - Error initializing system!  Please try again...

The problem: "unknown key type dsa"
DSA has been removed from recent versions of OpenSSH due to security vulnerabilities.

The solution:
Edit the script /usr/sbin/eFa-Commit and comment out the lines handling the generation of the DSA key:

Code: Select all

if [[ $genhostkeys -eq 1 ]]; then
[ $verbose -eq 1 ] && echo -e "$green[eFa]$clean - Generating SSH Host keys"
rm -f /etc/ssh/ssh_host_rsa_key
[ $? -ne 0 ] && exit 1
rm -f /etc/ssh/ssh_host_dsa_key
[ $? -ne 0 ] && exit 1
rm -f /etc/ssh/ssh_host_ecdsa_key
[ $? -ne 0 ] && exit 1
rm -f /etc/ssh/ssh_host_ed25519_key
[ $? -ne 0 ] && exit 1
ssh-keygen -f /etc/ssh/ssh_host_rsa_key -N '' -t rsa
[ $? -ne 0 ] && exit 1
#ssh-keygen -f /etc/ssh/ssh_host_dsa_key -N '' -t dsa
#[ $? -ne 0 ] && exit 1
ssh-keygen -f /etc/ssh/ssh_host_ecdsa_key -N '' -t ecdsa
[ $? -ne 0 ] && exit 1
ssh-keygen -f /etc/ssh/ssh_host_ed25519_key -N '' -t ed25519
[ $? -ne 0 ] && exit 1

[barbours]

EFA-project is going off into the sunset. Please come join us on OpenEFA - https://openefa.com forum: forum.openefa.com. We are developing a modern, more dynamic, smarter EFA. We are continuing support of the efa-project efa so please post your solution there.

Look forward to seeing you.

sb