[SOLVED] Question on SSH to server.

rockstar05 · 08-15-2013, 09:23 AM

Hi All,

I have one problem, when I ssh to some server form my gateway machine(i.e. Linux) it regularly asking me about fingerprint,

Quote:

RSA key fingerprint is 35:0b:05:ea:er:eb:6c:86:ca:cd:ad:15:09:sz:0c:50.
Are you sure you want to continue connecting (yes/no)? yes

Can anyone tell me what is the meaning of above line and how can I stop asking him on every login.

Thanks for your help..

blueh2o · 08-15-2013, 09:37 AM

Check that your ~/.ssh/known_hosts file is writable.

rockstar05 · 08-15-2013, 09:45 AM

My .ssh/known_hosts file shows,

-rw-r--r-- 1 rckstr count 39779 2013-08-13 15:55 known_hosts

blueh2o · 08-15-2013, 09:47 AM

Does it perhaps already contain an entry for the host in question?

rockstar05 · 08-15-2013, 10:00 AM

No, When I ssh the server then it make entry in known_hosts file.

blueh2o · 08-15-2013, 10:08 AM

What are the permissions on your ~/.ssh directory?

rockstar05 · 08-15-2013, 10:13 AM

drwx------ 2 rckstr count 512 2012-04-25 16:19 .ssh

blueh2o · 08-15-2013, 10:18 AM

You could always try using the -o "StrictHostKeyChecking no" option for ssh.

lleb · 08-15-2013, 11:08 AM

Quote:

Originally Posted by rockstar05

No, When I ssh the server then it make entry in known_hosts file.

yes, if it is the first time you have SSHed into that system that is exactly what it will do.

Now if you have been there before and your end has changed the it will prompt again and every time your end changes it will prompt.

what you can do is vi the know_hosts file and verify that it is writing the data properly and or clear out your list of fingerprints and start a new connection to populate a clean fingerprint.

rockstar05 · 08-16-2013, 10:07 AM

Sorry for late reply,

In known_host file every time it right when I am tiring to connect to new host.

when I try -o,

20:34:56 rckstr@lx374 ~$ ssh -o lx1441
command-line: line 0: Bad configuration option: lx1441

blueh2o · 08-16-2013, 10:14 AM

Quote:

Originally Posted by rockstar05

Sorry for late reply,
20:34:56 rckstr@lx374 ~$ ssh -o lx1441
command-line: line 0: Bad configuration option: lx1441

You have to actually put "StrictHostKeyChecking no" after the -o.

Code:

ssh -o "StrictHostKeyChecking no" lx1441

sundialsvcs · 08-19-2013, 08:13 AM

But if it were me, I wouldn't do that. The fingerprint should not be changing, and I daresay that it isn't.

Try to connect, then L66K at the content of the known-hosts file. Is there an entry, or is there not?

Also, L66K at the fingerprint string: is it the same string, or is it not?

Does the software process that is attempting the connection actually have rights to this file/directory, or not? L66K at its logs. Stop "guessing" and "slapping at it."