[PATCH] ssh -Y: always accepts and stores the hostkey
Roberto A. Foglietta
roberto.foglietta at gmail.com
Wed Oct 17 22:14:07 WST 2007
Sorry guys,
this is the RIGHT patch and this is the test procedure:
/.ssh # export DROPBEAR_PASSWORD=guest
/.ssh # cat known_hosts
/.ssh # ssh -Y guest at 172.16.119.6 hostname
Host '172.16.119.6' key accepted unconditionally.
(fingerprint md5 c9:50:c6:b3:eb:f8:80:be:68:fe:a1:fd:51:fb:d8:15)
eemd2364170
/.ssh # cat known_hosts
172.16.119.6 ssh-rsa
AAAAB3NzaC1yc2EAAAABIwAAAQEAsYTt7X7ACOWazixl64T5sgBCnuB3OboOc5CJYb+ESaRXTk/d4mduEWmlVanh5CjOen2glvaJvkz5FqCzcq88UD23+aHV9HvxXT=
/.ssh # vi known_hosts #altering hostkey
/.ssh # cat known_hosts
172.16.119.6 ssh-rsa
BAAAB3NzaC1yc2EAAAABIwAAAQEAsYTt7X7ACOWazixl64T5sgBCnuB3OboOc5CJYb+ESaRXTk/d4mduEWmlVanh5CjOen2glvaJvkz5FqCzcq88UD23+aHV9HvxXT=
/.ssh # ssh guest at 172.16.119.6 hostname
ssh: connection to guest at 172.16.119.6:22 exited:
Host key mismatch for 172.16.119.6 !
Fingerprint is md5 c9:50:c6:b3:eb:f8:80:be:68:fe:a1:fd:51:fb:d8:15
Expected md5 92:3a:88:29:46:69:66:67:6d:88:4e:4e:17:1e:17:23
If you know that the host key is correct you can
remove the bad entry from ~/.ssh/known_hosts
/.ssh # ssh -Y guest at 172.16.119.6 hostname
Host '172.16.119.6' key accepted unconditionally.
(fingerprint md5 c9:50:c6:b3:eb:f8:80:be:68:fe:a1:fd:51:fb:d8:15)
eemd2364170
Cheers,
--
/roberto
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dropbear_always_accept_and_store_hostkey.patch
Type: text/x-diff
Size: 3238 bytes
Desc: not available
Url : http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/attachments/20071017/e70dfbe8/attachment.patch
More information about the Dropbear
mailing list