Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly

From: comphelp@xxxxxxxxx (Todd H.)
Date: Mon, 10 Mar 2008 20:44:21 -0500

Raymond <rpau88@xxxxxxxxx> writes:

Ok, this is what I get:

# ssh-keygen -l -f /etc/ssh/ssh_host_rsa_key.pub
2048 4b:22:b7:31:73:66:64:07:c5:2d:51:3e:69:82:9e:53 /etc/ssh/
ssh_host_rsa_key.pub
# ssh-keygen -l -f /etc/ssh/ssh_host_dsa_key.pub
1024 fb:23:96:4f:96:fa:ca:3a:d1:a2:d3:69:96:a0:7c:1e /etc/ssh/
ssh_host_dsa_key.pub

Don't need to be root to do these typically, fwiw. What machine did
you run this on?

switch to a normal user:
$ ssh mydomainname.com
The authenticity of host 'mydomainname.com (00.000.000.000)' can't be
established.
RSA key fingerprint is 4b:22:b7:31:73:66:64:07:c5:2d:51:3e:69:82:9e:
53.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'mydomainname.com,00.000.000.000' (RSA) to
the list of known hosts.
hash mismatch
key_verify failed for server_host_key

Okay. Redo that with the -v switch and post here. -v is for
verbose and will tell you far more detail as to where exactly it's
failing.

And where was this done from?

$ ssh localhost
The authenticity of host 'localhost (127.0.0.1)' can't be established.
RSA key fingerprint is 4b:22:b7:31:73:66:64:07:c5:2d:51:3e:69:82:9e:
53.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'localhost' (RSA) to the list of known
hosts.
hash mismatch
key_verify failed for server_host_key

Was this done from the perspective of your domain?

The strange thing is, if I tried hard enough, retrying the connection
repeatedly, it will sometimes get connected.
Both openssh client and PuTTY exhibit the same problem. I would think
that the problem lies with openssh server then.

Any load balancing going on that you might not be aware of?

How do I troubleshoot this kind of problem? Any logs that I can
watch?

/var/log/messages perhaps, depending on the logging level
Wherever /etc/syslog.conf points all stuff to.

--
Todd H.
http://www.toddh.net/
.

Follow-Ups:
- Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
  - From: Raymond

References:
- PuTTY failing "Server's host key did not match the signature supplied" suddenly
  - From: Raymond
- Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
  - From: Todd H.
- Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
  - From: Raymond

Prev by Date: Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
Next by Date: Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
Previous by thread: Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
Next by thread: Re: PuTTY failing "Server's host key did not match the signature supplied" suddenly
Index(es):
- Date
- Thread

Relevant Pages

ssh
... The authenticity of host '10.10.10.27' can't be established. ... Key fingerprint is 1024 ... Are you sure you want to continue connecting? ...
(comp.security.ssh)
Re: ssh
... > The authenticity of host '10.10.10.27' can't be established. ... > Key fingerprint is 1024 ... > Are you sure you want to continue connecting? ...
(comp.security.ssh)
authenticity of host .... cant be established.
... 'connecting' is the prompt my ssh password should be sent to so ... ... Where it says the 'authenticity of the host can't be established' ... ...
(comp.security.ssh)
Re: unable to sftp
... The authenticity of host 'localhost ' can't be established. ... Are you sure you want to continue connecting? ... Permanently added 'localhost' to the list of known hosts. ...
(comp.unix.solaris)
Re: Private LAN, Zone Alarm & Setting Up Remote Desktop - Sorta Stuck
... Just call the Remote Desktop host from the RDP ... Since you're connecting over your LAN, you don't have to worry about IP ... the router's hardware firewall and Zone Alarm software firewalls on ...
(microsoft.public.windowsxp.general)