edit /.ssh/known_hosts
delete the line with hanfwl01 in it
ssh hanfwl01
You'll receive this message:
Host key not found from the list of known hosts.
Are you sure you want to continue connecting (yes/no)?
type yes
all done.
Of course you want to assure that:
SOMEONE IS NOT DOING SOMETHING NASTY!
and no one is:
eavesdropping on you right now (man-in-the-middle attack)!
Michael Hulet
Network System Administrator
ITTC, University of Kansas
On Wed, 2 Aug 2000, Vy Mai wrote:
> Hi ,
>
> When ssh from one machine to other, I 've got the following message (in
> Red):
>
> fwlser01@[/etc/fw/conf] # ssh -v hanfwl01 uname -a
> SSH Version 1.2.26 [sparc-sun-solaris2.6], protocol version 1.5.
> Standard version. Does not use RSAREF.
> fwlser01: Reading configuration data /etc/ssh_config
> fwlser01: Applying options for *
> fwlser01: ssh_connect: getuid 0 geteuid 0 anon 0
> fwlser01: Connecting to hanfwl01 [160.206.254.2] port 22.
> fwlser01: Allocated local port 1018.
> fwlser01: Connection established.
> fwlser01: Remote protocol version 1.5, remote software version 1.2.27
> fwlser01: Waiting for server public key.
> fwlser01: Received server public key (768 bits) and host key (1024 bits).
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> @ WARNING: HOST IDENTIFICATION HAS CHANGED! @
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
> Someone could be eavesdropping on you right now (man-in-the-middle attack)!
> It is also possible that the host key has just been changed.
> Please contact your system administrator.
> Add correct host key in //.ssh/known_hosts to get rid of this message.
> Agent forwarding is disabled to avoid attacks by corrupted servers.
> X11 forwarding is disabled to avoid attacks by corrupted servers.
> Are you sure you want to continue connecting (yes/no)? yes
> fwlser01: Initializing random; seed file //.ssh/random_seed
> fwlser01: Encryption type: idea
> fwlser01: Sent encrypted session key.
> fwlser01: Installing crc compensation attack detector.
> fwlser01: Received encrypted confirmation.
> fwlser01: Trying rhosts or /etc/hosts.equiv with RSA host authentication.
> fwlser01: Remote: Accepted by .rhosts.
> fwlser01: Received RSA challenge for host key from server.
> fwlser01: Sending response to host key RSA challenge.
> fwlser01: Remote: Rhosts with RSA host authentication accepted.
> fwlser01: Rhosts or /etc/hosts.equiv with RSA host authentication accepted
> by se
> rver.
> fwlser01: Sending command: uname -a
> fwlser01: Entering interactive session.
> SunOS hanfwl01 5.6 Generic_105181-19 sun4m sparc SUNW,SPARCstation-5
> fwlser01: Transferred: stdin 0, stdout 69, stderr 0 bytes in 0.2 seconds
> fwlser01: Bytes per second: stdin 0.0, stdout 355.2, stderr 0.0
> fwlser01: Exit status 0
>
>
> I want to get rid of those red line as it requires YES to be entered for ssh
> connection to proceed.
> It said to add correct host key into /.ssh/known_hosts.
> Would anyone be kindly enough to tell me how to add ...
>
> Much appreciated,
>
> Vy
>
> Hansen Corporation Phone: +61 3 9840 3082
> 2 Frederick Street Fax: +61 3 9840 3824
> Doncaster VIC 3108 Mobile:
> AUSTRALIA eMail:
> [EMAIL PROTECTED]
>
>
>
> **********************************************************************
> This email and any files transmitted with it are confidential and
> intended solely for the use of the individual or entity to whom they
> are addressed. If you have received this email in error please notify
> the system manager.
>
> This footnote also confirms that this email message has been swept by
> MIMEsweeper for the presence of computer viruses.
>
> www.mimesweeper.com
> **********************************************************************
>
