Re: Security warning: Where should I look for?

To: debian-user@lists.debian.org
Subject: Re: Security warning: Where should I look for?
From: Miroslav Maiksnar <mixi@seznam.cz>
Date: Mon, 23 Feb 2004 02:19:21 +0100
Message-id: <[🔎] 200402230219.21285.mixi@seznam.cz>
In-reply-to: <[🔎] 20040223003834.GA26411@hpd.the-sphere.org>
References: <[🔎] 20040223003834.GA26411@hpd.the-sphere.org>

Dne po 23. února 2004 01:38 Antonio Rodriguez napsal(a):
> I just received a strong warning:
>
> tony@hpd:~$ scp p173* root@remote.ip.here:/pathto/
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> @    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
> Someone could be eavesdropping on you right now (man-in-the-middle attack)!
> It is also possible that the RSA host key has just been changed.
> The fingerprint for the RSA key sent by the remote host is
> 24:40:94:e0:81:b9:af:62:dd:70:84:47:10:d1:c3:c0.
> Please contact your system administrator.
> Add correct host key in /home/tony/.ssh/known_hosts to get rid of this
> message. Offending key in /home/tony/.ssh/known_hosts:2
> RSA host key for local.ip.here has changed and you have requested strict
> checking. Host key verification failed.
> lost connection
> tony@hpd:~$
>
> Thanks to all.

Also if remote server gets reinstalled and lazy admin doesn't use backuped RSA 
keys, new ones is generated and every poor ssh user gets this message ;o(

Mixi

Reply to:

Follow-Ups:
- Re: Security warning: Where should I look for?
  - From: Pigeon <jah.pigeon@ukonline.co.uk>

References:
- Security warning: Where should I look for?
  - From: Antonio Rodriguez <arodriguez31@cfl.rr.com>

Prev by Date: Re: Migration of Knoppix capability
Next by Date: Re: DVD copying and CSS
Previous by thread: Re: Security warning: Where should I look for?
Next by thread: Re: Security warning: Where should I look for?
Index(es):
- Date
- Thread