public key access error

From: Daniel Huang (danielhuang_at_hotmail.com)
Date: 10/29/04

• Next message: Andrei Ivanov: "Re: RH Linux / wu-ftp security question?"
• Previous message: Tim Haynes: "Re: iptables / reject vs drop"
• Next in thread: Bill Unruh: "Re: public key access error"
• Reply: Bill Unruh: "Re: public key access error"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 29 Oct 2004 16:39:38 -0400

Hi, I have one Linux client machine A get reinstalled yesterday and the it's
ssh hostkey got changed.

but We used to login in to this machine A with public key through another
unix machine B which we dont' have root access.

Since the linux client A box's host key was changed , so when we try to ssh
to the linux A from the unix machine B, we got reject as the B still trying
to remember the old linux B host key.

I remove the host key from the known_hosts file from unix B, still got msg:

  @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
  @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
  @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
  IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
  Someone could be eavesdropping on you right now (man-in-the-middle
attack)!
  It is also possible that the RSA host key has just been changed.
  The fingerprint for the RSA key sent by the remote host is
  23:00:20:83:de:02:95:f1:e3:34:be:57:3f:cf:2c:e7.
  Please contact your system administrator.
  Add correct host key in /home/xahria/.ssh/known_hosts to get rid of this
message.
  Offending key in /home/xahria/.ssh/known_hosts:8
  RSA host key for localhost has changed and you have requested strict
checking.
  Host key verification failed.

looks like the unix B's stricthostkeychecking=yes, and won't allow us to
change any machine's host key.

Any idea on this ?

Thanks

---

• Next message: Andrei Ivanov: "Re: RH Linux / wu-ftp security question?"
• Previous message: Tim Haynes: "Re: iptables / reject vs drop"
• Next in thread: Bill Unruh: "Re: public key access error"
• Reply: Bill Unruh: "Re: public key access error"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: public key access error ... I have one Linux client machine A get reinstalled yesterday and the it's ... ]ssh hostkey got changed. ... ]unix machine B which we dont' have root access. ... ]to remember the old linux B host key. ... (comp.os.linux.security) Re: public key access error ... I have one Linux client machine A get reinstalled yesterday and the it's ... >]unix machine B which we dont' have root access. ... >] It is also possible that the RSA host key has just been changed. ... (comp.os.linux.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.os.linux.security  > 2004-10