John, 3 ways to verify the host key:
1) Connect over a network which you have a reasonable degree of confidence is secure. This would normally mean connecting over a LAN to the host in question to get its key. For the truly paranoid, this would mean connecting over a x-over cable to the host in question. 2) Have someone send you the host key and then cut and paste the key into the appropriate file. To have a degree of confidence you would have to receive the key through some fairly secure means, i.e. have a floppy fedexed to you, sent imbedded in an email with PGP, etc. 3) Call the person who manages the server, connect to the server, get the key and have them verify the received key over the phone. (this is proabably the easiest method) The keys are stored in files on each host. For example, using openssh, the hosts key is normally stored in a file called ssh_host_rsa_key.pub. Different client ssh programs store the public keys of the servers they talk to in different places. F-Secure's ssh client store them in a directory called 'hostkeys' and they have names like 'key_22_10.1.1.1.pub'. HTH, Kent -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of John Green Sent: Friday, March 29, 2002 8:03 AM To: [EMAIL PROTECTED] Subject: RE: SSH client for windows 95 [7:39869] but when i connect using the ssh client i get this security alert. do you know what this means ? "PuTTY security alert The server's host key is not cached in the registry. You have no guarantee that the server is the computer you think it is. The server's key fingerprint is " 2048 1e:45:22:44:..........:55:9a:7b If you trust this host hiy Yes and add the keys to the PuTTy's cache on connecting." how to recognise the fingerprint numbers that they belong to the host to which we are connecting. i don't think they refer to the MAC address because that is unique to the host. --- colin newman wrote: > Putty is a great SSH windows client. It supports > SSH versions 1 and 2. You __________________________________________________ Do You Yahoo!? Yahoo! Greetings - send holiday greetings for Easter, Passover http://greetings.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=39906&t=39869 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
