Re: Is there a way to supress the authentication check when using SSH?
From: Richard E. Silverman (res_at_qoxp.net)
Date: 06/18/04
- Next message: LRW: "Re: scp in unattended batch mode"
- Previous message: Anthony: "Is there a way to supress the authentication check when using SSH?"
- In reply to: Anthony: "Is there a way to supress the authentication check when using SSH?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 17 Jun 2004 20:03:04 -0400
> Is there a way to suppress the message:
> The authenticity of host 'x.x.x.x (x.x.x.x)' can't be established.
> RSA key fingerprint is
> xx:xx:xx:c3:f7:5c:c6:xx:xx:0c:xx:2c:xx:1c:7e:b6.
> Are you sure you want to continue connecting (yes/no)
Not in a straightforward way, for good reason: it's a bad idea. Without
server authentication, SSH connections are vulnerable to man-in-the-middle
and spoofing attacks, because you have not verified the server you're
connecting to is actually the one you had in mind.
> I'm trying to automate some ssh connections to a number of ips that do
> not always stay constant. To avoid this prompted, I'm forced to
> manually ssh and type yes for each new IP.
You have not said what SSH software you're using; I will assume the
OpenSSH client. Use:
ssh -o HostKeyAlias=foo -o CheckHostIP=no <current IP address>
... where the server's SSH host key is labelled "foo" in the known_hosts
file.
-- Richard Silverman res@qoxp.net
- Next message: LRW: "Re: scp in unattended batch mode"
- Previous message: Anthony: "Is there a way to supress the authentication check when using SSH?"
- In reply to: Anthony: "Is there a way to supress the authentication check when using SSH?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
