User login

Home
 RSA host key changed, requires validation: what to do

RSA host key changed, requires validation: what to do

Submitted by Benjamin Melançon on July 1, 2008 - 6:24am
in

RSA host key for example.com has changed and you have requested strict checking.
Host key verification failed.

In the line above it will actually tell you where the bad key is, with known_hosts being the file and 2 being the position of the problem key:

Offending key in /home/you/.ssh/known_hosts:2

After verifying that the RSA host key has changed and the new fingerprint is correct (the point of this alerting and blocking you is to protect you from a man-in-the-middle attack), you can get past this block and log into the server by deleting the old key, on your local computer of course:

Ebony-II:~ you$ sudo vi .ssh/known_hosts

Resources

http://www.securityfocus.com/infocus/1806

Resolution

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
  • You may post code using <code>...</code> (generic) or <?php ... ?> (highlighted PHP) tags.
  • You can use Markdown syntax to format and style the text. Also see Markdown Extra for tables, footnotes, and more.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img> <blockquote> <small> <h2> <h3> <h4> <h5> <h6> <sub> <sup> <p> <br> <strike> <table> <tr> <td> <thead> <th> <tbody> <tt> <output>
  • Lines and paragraphs break automatically.

More information about formatting options

By submitting this form, you accept the Mollom privacy policy.