OpenSSH server

From SaruWiki
Revision as of 02:15, 30 October 2010 by 79.142.67.109 (talk) (comment2, http://la-condesa.jp/./node/23348 old women fucking videos, xme, http://isagalaudu.com/node/62140 girl fucked by doberman video, 803745, http://chuckanutartfarm.com/node/85493 wet pussy le)
Jump to navigation Jump to search

comment2, http://la-condesa.jp/./node/23348 old women fucking videos, xme, http://isagalaudu.com/node/62140 girl fucked by doberman video, 803745, http://chuckanutartfarm.com/node/85493 wet pussy lesbian video, 3195, http://www.bigbuild.org/node/63871 free video clip anal, 6438, http://dawnbreakersinc.com/?q=node/6578 celebrity free hardcore sex clips, dkju, http://www.danawilson.org/node/87108 miniclip boom volleyball topless password, 8], http://www.hydraulix.com.br/node/24692 nylon fetish sex video, pjllz, http://winnipegapartmentbuildings.com/node/10951 free black bbw movie, kjt, http://iraq.orgstate.net/node/246118 College couples sex videos, 611478, http://dadsanon.com/node/78394 dick movie poster, rblwhg, http://tcphotobyniki.com/node/18003 monster cock video, =-(((, http://teachforhk.org/en/node/83435 free lesbian hentai porn movies, 517116, http://www.encinitasfocus.com/node/76743 Free movies ass,  %[[[, http://mytripsy.com/node/590 gay college clips, ldad, http://www.expecttolearn.com/node/31284 gay butt licking movies, >:-[[, http://thecavemanreviews.com/node/1865 Hairy natural video,  :-D, http://iklangratiskaltim.info/node/139999 porn websites like porn tube, =PPP, http://www.intlsdoc.com/node/104698 Eat pussy sample movie, %OOO, http://dhruvaloka.com/node/29108 porno tube video, =-]]], http://www.sdfamilyguidanceservices.com/node/77827 Video d sex,  %]], http://www.merseysidetaichi.com/node/61436 begonia tuberhybrida hairy, 8(((, http://www.hofstader.com/node/48378 free video clips hairy pussy, =-OOO, http://pelhamrealtyrentals.com/node/63245 free japanese porno movies, wstdub, http://dev.rcsu.org/node/2868 Free mature daily porn videos, 464251, http://h1442719.stratoserver.net/drupal-6.8.000000/node/144400 philippine college sex scandal video,  %[, http://rhutchison.eu/node/33755 Smegma gay pics dvd, myoqs, http://mupi.org.mo/en/node/55833 Free carmen cocks video, =O, http://nevermindthenoise.net/node/7053 sexy nude girl video, khsuw, http://epidermolysisbullosaacquisita.org/node/62218 Young teens having sex videos, >:-]],

Changing RSA keys

Occasionally you'll find the RSA key of one of your machines has changed. This may have a number of reasons, a.o. a reinstall or migration of said machine. In any case, when you try to SSH to the machine you get a message like this: 

localhost:~# ssh insomnia@easton.saruman.biz
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
f7:1a:5a:11:ca:20:99:fa:db:1b:b8:75:8e:e5:f1:12.
Please contact your system administrator.
Add correct host key in /home/sixpacjo/.ssh/known_hosts to get rid of this message.
Offending key in /home/sixpacjo/.ssh/known_hosts:4
RSA host key for easton.saruman.biz has changed and you have requested strict checking.
Host key verification failed. 
localhost:~# _

When you get this message it is not possible to connect to the machine mentioned, until you've solved the problem of the RSA key. There are multiple ways to correct the key, but the simplest method seems to be to simply remove the offending key with ssh-keygen. Note that Debian "Lenny" stores the RSA key in two places: one for the host name, one for the IP number. To prevent annoying messages like this: 

Warning: the RSA host key for 'easton.saruman.biz' differs from the key for the IP address '192.168.67.5'
Offending key for IP in /home/sixpacjo/.ssh/known_hosts:4

you should remove the RSA key for the IP number as well. This you do with the following two commands: 

localhost:~# ssh-keygen -R easton.saruman.biz
/home/sixpacjo/.ssh/known_hosts updated.
Original contents retained as /home/sixpacjo/.ssh/known_hosts.old
localhost:~# ssh-keygen -R 192.168.67.5
/home/sixpacjo/.ssh/known_hosts updated.
Original contents retained as /home/sixpacjo/.ssh/known_hosts.old
localhost:~# _

After deleting the "offending RSA keys" like this, you can SSH to the box in question, and your SSH client will save the (new) RSA key for you in your known_hosts file.

Retrieved from "https://www.saruman.biz/saruwiki/index.php?title=OpenSSH_server&oldid=2657"