<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=UTF-8" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#0050d0">
You can also set "StrictHostKeyChecking no" in /etc/ssh/ssh_config or
~/.ssh/config<br>
You'll still get a warning, but it wont refuse to let you in the box.<br>
<br>
-Patrick<br>
<br>
-------- Original MessageĀ --------<br>
Subject: [clue-tech] ssh, vim helper<br>
From: David L. Willson <a class="moz-txt-link-rfc2396E" href="mailto:DLWillson@TheGeek.NU"><DLWillson@TheGeek.NU></a><br>
To: <a class="moz-txt-link-abbreviated" href="mailto:clue-tech@cluedenver.org">clue-tech@cluedenver.org</a><br>
Date: Thursday, October 16, 2008 9:26:59 PM<br>
<blockquote cite="mid:20081007174834.M26667@TheGeek.NU" type="cite">
<pre wrap="">>From the "everyone but me already knows this<a class="moz-txt-link-rfc2396E" href="mailto:department:Haveyouevergonetosshahostyou'drebuiltrecently,andgottenoneofthese?$sshsmi-admin@10.0.1.2@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@WARNING:REMOTEHOSTIDENTIFICATIONHASCHANGED!@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ITISPOSSIBLETHATSOMEONEISDOINGSOMETHINGNASTY!Someonecouldbeeavesdroppingonyourightnow(man-in-the-middleattack)!ItisalsopossiblethattheRSAhostkeyhasjustbeenchanged.ThefingerprintfortheRSAkeysentbytheremotehostis7a:0b:f3:8a:52:e0:1a:e3:f6:26:b3:e8:31:a0:af:cf.Pleasecontactyoursystemadministrator.Addcorrecthostkeyin/home/dlwillson/.ssh/known_hoststogetridofthismessage.Offendingkeyin/home/dlwillson/.ssh/known_hosts:95RSAhostkeyfor10.0.1.2haschangedandyouhaverequestedstrictchecking.Hostkeyverificationfailed.Well,Igetthemallthetime,andIfoundtheeasywaytodeletetheoldkey,butquick.Noticethatitgivesyoutheline-numberoftheo
ffendingkey,soyoucanusethe">" department:
Have you ever gone to ssh a host you'd rebuilt recently, and gotten one of these?
$ ssh smi-admin@10.0.1.2
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
7a:0b:f3:8a:52:e0:1a:e3:f6:26:b3:e8:31:a0:af:cf.
Please contact your system administrator.
Add correct host key in /home/dlwillson/.ssh/known_hosts to get rid of this message.
Offending key in /home/dlwillson/.ssh/known_hosts:95
RSA host key for 10.0.1.2 has changed and you have requested strict checking.
Host key verification failed.
Well, I get them all the time, and I found the easy way to delete the old key, but
quick. Notice that it gives you the line-number of the offending key, so you can use
the "</a>start at line" shortcut when starting vim to go straight to it when you edit your
known_hosts file. Like this:
dlwillson@aurora:~
$ vim +95 .ssh/known_hosts
Now, you just key in ddZZ (dd deletes the bad key, and ZZ saves and quits) and try your
ssh again.
-- David
_______________________________________________
clue-tech mailing list
<a class="moz-txt-link-abbreviated" href="mailto:clue-tech@cluedenver.org">clue-tech@cluedenver.org</a>
<a class="moz-txt-link-freetext" href="http://www.cluedenver.org/mailman/listinfo/clue-tech">http://www.cluedenver.org/mailman/listinfo/clue-tech</a>
</pre>
</blockquote>
<br>
<br>
</body>
</html>