[X-Unix] SSH trouble

Simon Forster simon-lists at ldml.com
Thu Mar 17 02:40:55 PST 2005 

This is because the PowerMac's IP has changed and doesn't match that 
remembered by your iBook. The easiest thing to do is to remove the 
offending line from ~/.ssh/known_hosts (on your iBook). Next time you 
log in, you'll be warned that you're connecting to an unknown host and 
that it'll be added to known_hosts. This is fine - but you'll then have 
to remove the new line from known_hosts next time you try to link up 
from your internal network. i.e. Each time you connect to the PowerMac 
on a different IP address to last time, you'll need to delete the 
appropriate line from known_hosts in your iBook.

FWIW, my office router allows me to specify the external IP number 
(even though I'm on the internal network) and then routes back to the 
appropriate machine internally. This adds an extra hop when 
administrating machines on the internal network - but it's one hop 
versus futzing with known_hosts. Maybe your router will do the same?

You could set up SSH keys instead (man ssh-keygen for further info).

HTH

Simon Forster
_____________________________________________________
  LDML Ltd, 62 Pall Mall, London, SW1Y 5HZ, UK
  Tel: +44 (0)870 1999 780   Fax: +44 (0)70 9230 5247
_____________________________________________________

On 17 Mar 2005, at 03:32, Chris Ruscio wrote:

> Hi all,
>
> I have an old powerMac running behind a router in my dorm room.
> I set the router to forward port 22 to it.
>
> When I'm on my network with my iBook, I can ssh to it's local IP 
> (192.168.blah.blah). or if the powerMac is pluged right into the wall 
> there's no issues...
>
> However, when I ssh to the router's IP from outside the local network, 
> I get the message below...
>
> How do I add a key to the known_hosts file? or should i be doing 
> something else to fix things... ???
>
> Thanks,
> Chris
>
> [Username]>ssh ###.###.###.###
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> @    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
> IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
> Someone could be eavesdropping on you right now (man-in-the-middle 
> attack)!
> It is also possible that the RSA host key has just been changed.
> The fingerprint for the RSA key sent by the remote host is
> 13:4c:....:blah:blah:....:9a:30.
> Please contact your system administrator.
> Add correct host key in /Users/[Username]/.ssh/known_hosts to get rid 
> of this message.
> Offending key in /Users/[Username]/.ssh/known_hosts:30
> RSA host key for ###.###.###.### has changed and you have requested 
> strict checking.
> Host key verification failed.
> [Username]>
> _______________________________________________
> X-Unix mailing list
> X-Unix at listserver.themacintoshguy.com
> http://listserver.themacintoshguy.com/mailman/listinfo/x-unix
>
> Listmom is trying to clean out his closets! Vintage Mac and random 
> stuff:
>         http://search.ebay.com/_W0QQsassZmacguy1984

More information about the X-Unix mailing list