HPE Community read-only access December 15, 2018
This is a maintenance upgrade. You will be able to read articles and posts, but not post or reply.
Hours:
Dec 15, 4:00 am to 10:00 am UTC
Dec 14, 10:00 pm CST to Dec 15, 4:00 am CST
Dec 14, 8:00 pm PST to Dec 15, 2:00 am PST
Operating System - OpenVMS
cancel
Showing results for 
Search instead for 
Did you mean: 

New SSH host key and man in the middle warning

 
SOLVED
Go to solution
Galen Tackett
Valued Contributor

New SSH host key and man in the middle warning

I just created a new host key for my system and now when I initiate an SSH into it I get the warning that starts out:

WARNING: HOST IDENTIFICATION HAS CHANGED!...

and goes on to mention a possible "man-in-the-middle" attack.

The TCP/IP Services SSH manual says "the user should copy the server’s new key or contact the system manager." I _am_ the system manager but I don't know what to do and can't find it in this manua
3 REPLIES
Joseph Huber_1
Honored Contributor

Re: New SSH host key and man in the middle warning

This is normal if You changed the key. Since You know that,
this warning can be ignored. Now, depending on Your ssh CLIENTs config, if the warning sticks, You have to remove the old key from the clients: depending on the system/ssh software, look into [.ssh],[.ssh2],.ssh directories.
http://www.mpp.mpg.de/~huber
Martin Vorlaender
Honored Contributor
Solution

Re: New SSH host key and man in the middle warning

Hi,

hostkeys of SSH servers that a user connected to are stored in SYS$LOGIN:[SSH2.HOSTKEYS] (mind the syntax - this is of a more descriptive nature), see http://h71000.www7.hp.com/doc/732final/aa-rvbua-te/00/00/41-con.html .

The easiest way is to remove the server's hostkey from there.

cu,
Martin
Galen Tackett
Valued Contributor

Re: New SSH host key and man in the middle warning

Thanks, guys. Martin's last message told me all I needed to fix this.