[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: man in the middle attack ?

Aidan wrote:
> Now I'm really curious, but confused.  Why did the presence of another
> server change the key on the original server?  Or did you mean that an
> old server was, in error, put up in place of the one you set up earlier
> (before the warning from SSH)?
>
> Kind regards,
> Aidan Gauland

Hi Aidan,

I'm not sure I understand SSH keys to the point of answering that, but
I can tell what I think it happened: the original SSH key, I believe,
never changed. The external IP was the same for both servers, and
because of this conflict, people from outside could see only the old
server which took precedence.

Of course, the old server had a different key.

Please correct me if I'm wrong. As Gaël said, maybe this command
> ssh-keygen -lf /etc/ssh/ssh_host_rsa_key.pub
can show me if that is the case. But I would have to have the original
SSH key to compare to, to see if it changed or not.

Can I run the same command on a client (my notebook) to compare to the
result of it from the server? I did not changed my know_hosts on the
notebook.

My best,
Beco



-- 
Dr. Beco
A.I. research, Cognitive Scientist and Philosopher
Linux Counter #201942
Reply to: