Can't get SSH working


#1

I moved my hosting to a PS about a week ago. I tried logging in via SSH and get this message (partial).

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is

I tried to upload a new key via the explanation here: http://wiki.dreamhost.com/SSH but I can’t even get into the site to do that.

Obviously I don’t know what the heck I’m doing.


#2

[quote]I tried to upload a new key via the explanation here: http://wiki.dreamhost.com/SSH but I can’t even get into the site to do that.

Obviously I don’t know what the heck I’m doing.[/quote]
It should be asking for your username and password still. You neglected to tell us what software you are using and what operating system.

The warning message is like being asked to check someone’s ID badge when dealing with a different person than one you’ve dealt with in the past. Presumably you would want to make sure they didn’t fake the ID badge, right? So this warning message is suggesting you take the time to verify that the computer you’re talking to is supposed to have that particular key. So that message is not particular helpful with your issue. It doesn’t tell us anything about why you “can’t even get into the site”.

Customer since 2000 :cool: openvein.org


#3

I’m trying to SSH in on a Mac using Terminal.app. According to DH support: Since you moved machines 8 days ago your hosttkey has changed. Youll want to update your key on file on your local machine to get rid of this message. You may need to consult your Operating Systems vendor for the exact process to do this.


#4

You got this warning because they moved your domain to a different server. Each server has its own unique key. You need to edit a local file on your mac, or just delete it:
/Users/YOU/.ssh/known_hosts

It has an entry for your domain that’s storing the public key. You can use a text editor such as BBEdit to delete that one line, but you can safely delete the entire file and it’ll regenerate the key(s) upon first SSH login to a server.

-Scott


#5

Is there a listing of the host keys somewhere?

That’s not very promising :(.

Moving hosts is fine, but it would be nice to make sure I’m actually connecting to the new host rather than hitting a mitm.

They’re already monitoring the hosts, so grabbing the host key fingerprints should be a piece of cake :).


#6

[quote]Moving hosts is fine, but it would be nice to make sure I’m actually connecting to the new host rather than hitting a mitm.

They’re already monitoring the hosts, so grabbing the host key fingerprints should be a piece of cake :).[/quote]
So easy you can do it yourself :cool:

username@blanka:~$ ssh-keygen -l -f /etc/ssh/ssh_host_rsa_key.pub 1024 de:f5:1c:a3:eb:12:7d:80:58:da:0e:4e:a6:d5:3e:c7 /etc/ssh/ssh_host_rsa_key.pub (RSA) username@blanka:~$
Customer since 2000 :cool: openvein.org


#7

But that assumes you’re on the legitimate host in the first place.

-Scott


#8

[quote]But that assumes you’re on the legitimate host in the first place.

-Scott[/quote]
Pffft. Use the DH Web Panel to setup a cronjob to save the output to a web-accessible file or email it to you then :stuck_out_tongue:

Customer since 2000 :cool: openvein.org


#9

Swell idea! The cron panel even has a spot for your email address so it can mail it to you.

-Scott


#10

You’d better to find a careerman to help you.

file recovery


#11

What I didn’t understand was the problem was on my computer, and not the host. Problem solved. Thanks for your help.


#12

Yup. It’s a good idea and the email works. Thanks for the suggestions.

I added it to the wiki.