On Sep 20, 2009, at 3:18 AM, Cyril Plisko wrote:
And ssh to hg.opensolaris.org alerts on eavasdropping attack.
$ hg pull -vu
running ssh [email protected] "hg -R hg/osarm/onarm-dev serve
--stdio"
remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
remote: @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
remote: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
remote: IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
remote: Someone could be eavesdropping on you right now
(man-in-the-middle attack)!
remote: It is also possible that the RSA host key has just been
changed.
remote: The fingerprint for the RSA key sent by the remote host is
remote: 53:54:25:4b:3c:27:40:2d:4b:d5:2b:92:12:15:87:49.
remote: Please contact your system administrator.
You likely saw the key warning since, normally, all the SCM
transactions occur on one host, but the service can sometimes failover
to the backup host ~00.20 PT when the webapps get restarted. Both
systems should have the same keys, but it appears that they've gotten
out of sync so I'll fix those today. If you see that again, let us know.
e.
_______________________________________________
website-discuss mailing list
[email protected]
