Operating System - OpenVMS
1827894 Members
1632 Online
109969 Solutions
New Discussion

Re: New SSH host key and man in the middle warning

 
SOLVED
Go to solution
Galen Tackett
Valued Contributor

New SSH host key and man in the middle warning

I just created a new host key for my system and now when I initiate an SSH into it I get the warning that starts out:

WARNING: HOST IDENTIFICATION HAS CHANGED!...

and goes on to mention a possible "man-in-the-middle" attack.

The TCP/IP Services SSH manual says "the user should copy the server’s new key or contact the system manager." I _am_ the system manager but I don't know what to do and can't find it in this manua
3 REPLIES 3
Joseph Huber_1
Honored Contributor

Re: New SSH host key and man in the middle warning

This is normal if You changed the key. Since You know that,
this warning can be ignored. Now, depending on Your ssh CLIENTs config, if the warning sticks, You have to remove the old key from the clients: depending on the system/ssh software, look into [.ssh],[.ssh2],.ssh directories.
http://www.mpp.mpg.de/~huber
Martin Vorlaender
Honored Contributor
Solution

Re: New SSH host key and man in the middle warning

Hi,

hostkeys of SSH servers that a user connected to are stored in SYS$LOGIN:[SSH2.HOSTKEYS] (mind the syntax - this is of a more descriptive nature), see http://h71000.www7.hp.com/doc/732final/aa-rvbua-te/00/00/41-con.html .

The easiest way is to remove the server's hostkey from there.

cu,
Martin
Galen Tackett
Valued Contributor

Re: New SSH host key and man in the middle warning

Thanks, guys. Martin's last message told me all I needed to fix this.