OS: Linux
kernel: 2.6.10-1.771_FC2
На машине xx1.xx1.xx1.xx1 являющемся в данном случае сервером ssh были взяты файлы:
/etc/ssh/ssh_host_key.pub
/etc/ssh/ssh_host_rsa_key.pub
/etc/ssh/ssh_host_dsa_key.pub
(с этого момента и далее все делается на машине xx2.xx2.xx2.xx2)
На машине xx2.xx2.xx2.xx2 содержимое файлов:
ssh_host_key.pub
ssh_host_rsa_key.pub
ssh_host_dsa_key.pub
было добавлено в файл /home/oftheday/.ssh/known_hosts
$cat ssh_host_key.pub ssh_host_rsa_key.pub ssh_host_dsa_key.pub >> /home/oftheday/.ssh/known_hosts
Вначало каждой добавленной строки вставлено xx1.xx1.xx1.xx1
После выполнения команд имеем интересный вывод на консоль (какие есть мнения???)
$ ssh -v -l oftheday xx1.xx1.xx1.xx1
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the DSA host key has just been changed.
The fingerprint for the DSA key sent by the remote host is
a5:f8:5c:3b:a5:81:5c:49:e7:0e:76:24:de:50:f5:b7.
Please contact your system administrator.
Add correct host key in /home/oftheday/.ssh/known_hosts to get rid of this message.
Offending key in /home/oftheday/.ssh/known_hosts:2
DSA host key for xx1.xx1.xx1.xx1 has changed and you have requested strict checking.
Host key verification failed.
Или подробно ($ ssh -v -l oftheday xx1.xx1.xx1.xx1)
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: Connecting to xx1.xx1.xx1.xx1 [xx1.xx1.xx1.xx1] port 22.
debug1: Connection established.
debug1: identity file /home/oftheday/.ssh/identity type -1
debug1: identity file /home/oftheday/.ssh/id_rsa type -1
debug1: identity file /home/oftheday/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version OpenSSH_3.8.1p1 FreeBSD-20040419
debug1: match: OpenSSH_3.8.1p1 FreeBSD-20040419 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the DSA host key has just been changed.
The fingerprint for the DSA key sent by the remote host is
a5:f8:5c:3b:a5:81:5c:49:e7:0e:76:24:de:50:f5:b7.
Please contact your system administrator.
Add correct host key in /home/oftheday/.ssh/known_hosts to get rid of this message.
Offending key in /home/oftheday/.ssh/known_hosts:2
DSA host key for xx1.xx1.xx1.xx1 has changed and you have requested strict checking.
Host key verification failed.
debug1: Calling cleanup 0x8062d00(0x0)
############################################################ ##############
Установка сервера (xx1.xx1.xx1.xx1) происходила недавно ничего не менялось кроме IP адреса машины.
Причем обоих (внутреннего и внешнего).
############################################################ ##############
Что Я сделал неправильно???
Буду благодарен любой помощи. Зарание спасибо.
kernel: 2.6.10-1.771_FC2
На машине xx1.xx1.xx1.xx1 являющемся в данном случае сервером ssh были взяты файлы:
/etc/ssh/ssh_host_key.pub
/etc/ssh/ssh_host_rsa_key.pub
/etc/ssh/ssh_host_dsa_key.pub
(с этого момента и далее все делается на машине xx2.xx2.xx2.xx2)
На машине xx2.xx2.xx2.xx2 содержимое файлов:
ssh_host_key.pub
ssh_host_rsa_key.pub
ssh_host_dsa_key.pub
было добавлено в файл /home/oftheday/.ssh/known_hosts
$cat ssh_host_key.pub ssh_host_rsa_key.pub ssh_host_dsa_key.pub >> /home/oftheday/.ssh/known_hosts
Вначало каждой добавленной строки вставлено xx1.xx1.xx1.xx1
После выполнения команд имеем интересный вывод на консоль (какие есть мнения???)
$ ssh -v -l oftheday xx1.xx1.xx1.xx1
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the DSA host key has just been changed.
The fingerprint for the DSA key sent by the remote host is
a5:f8:5c:3b:a5:81:5c:49:e7:0e:76:24:de:50:f5:b7.
Please contact your system administrator.
Add correct host key in /home/oftheday/.ssh/known_hosts to get rid of this message.
Offending key in /home/oftheday/.ssh/known_hosts:2
DSA host key for xx1.xx1.xx1.xx1 has changed and you have requested strict checking.
Host key verification failed.
Или подробно ($ ssh -v -l oftheday xx1.xx1.xx1.xx1)
OpenSSH_3.6.1p2, SSH protocols 1.5/2.0, OpenSSL 0x0090701f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: Connecting to xx1.xx1.xx1.xx1 [xx1.xx1.xx1.xx1] port 22.
debug1: Connection established.
debug1: identity file /home/oftheday/.ssh/identity type -1
debug1: identity file /home/oftheday/.ssh/id_rsa type -1
debug1: identity file /home/oftheday/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version OpenSSH_3.8.1p1 FreeBSD-20040419
debug1: match: OpenSSH_3.8.1p1 FreeBSD-20040419 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.6.1p2
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the DSA host key has just been changed.
The fingerprint for the DSA key sent by the remote host is
a5:f8:5c:3b:a5:81:5c:49:e7:0e:76:24:de:50:f5:b7.
Please contact your system administrator.
Add correct host key in /home/oftheday/.ssh/known_hosts to get rid of this message.
Offending key in /home/oftheday/.ssh/known_hosts:2
DSA host key for xx1.xx1.xx1.xx1 has changed and you have requested strict checking.
Host key verification failed.
debug1: Calling cleanup 0x8062d00(0x0)
############################################################ ##############
Установка сервера (xx1.xx1.xx1.xx1) происходила недавно ничего не менялось кроме IP адреса машины.
Причем обоих (внутреннего и внешнего).
############################################################ ##############
Что Я сделал неправильно???
Буду благодарен любой помощи. Зарание спасибо.