Bug#536464: ssh: remote host identification changed warning could be more helpful
Package: ssh
Version: 1:4.3p2-9etch3
Severity: wishlist
This familar warning comes by and by when new changes occur, and is easy
to become complacent that the ssh keys were changed by you for a reason.
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle
attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
.....
I'd like to see it suggest how to view the public host key fingerprint
(assuming it uses compatible commandline args too)
Eg: compare with /etc/ssh/ssh_rsa_key.pub on the remote with line X in
~/.ssh/known_hosts
or: ssh-keygen -l -f /etc/ssh/ssh_host_rsa_key.pub of the remote host
Thanks,
Scott Edwards
-- Daxal Communications - http://daxal.com/?from=debian+bts
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-6-vserver-amd64
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Versions of packages ssh depends on:
ii openssh-client 1:4.3p2-9etch3 Secure shell client, an rlogin/rsh
ii openssh-server 1:4.3p2-9etch3 Secure shell server, an rshd repla
ssh recommends no packages.
-- no debconf information
Reply to: