On Sun, Feb 22, 2004 at 07:38:34PM -0500, Antonio Rodriguez wrote: > I just received a strong warning: > > [EMAIL PROTECTED]:~$ scp p173* [EMAIL PROTECTED]:/pathto/ > @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ > @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ > @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ > IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! > Someone could be eavesdropping on you right now (man-in-the-middle attack)! > It is also possible that the RSA host key has just been changed. > The fingerprint for the RSA key sent by the remote host is > 24:40:94:e0:81:b9:af:62:dd:70:84:47:10:d1:c3:c0. > Please contact your system administrator.
Do what it says, then: verify out-of-band that the new RSA key quoted there is the one it should be, by contacting the remote system administrator using some other means. The sysadmin can use 'ssh-keygen -l -f /etc/ssh/ssh_host_rsa_key.pub' to display the fingerprint. Cheers, -- Colin Watson [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
