Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [fingerprint]

26 questions
54
votes
6 answers

How to change a SSH host key?

I cloned a server and so they've the same RSA key fingerprint. It seems to be defined in /etc/ssh/ssh_host_rsa_key.pub. What is the correct way to change that? Thanks.
Pascal Polleunus
  • 1,193
  • 2
  • 10
  • 14
43
votes
4 answers

Fingerprint of PEM ssh key

I have a PEM file which I add to a running ssh-agent: $ file query.pem query.pem: PEM RSA private key $ ssh-add ./query.pem Identity added: ./query.pem (./query.pem) $ ssh-add -l | grep query 2048 ef:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX…
Unknown
  • 1,291
  • 2
  • 13
  • 19
36
votes
8 answers

SSH into a box with a frequently changed IP

I have some cloud boxes that change their IP frequently. I ssh using the hostname but have to edit the known_hosts file every time the server launches because of this error message: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ …
coneybeare
  • 611
  • 1
  • 7
  • 14
34
votes
2 answers

Check the fingerprint for the ECDSA key sent by the remote host

I have got the well-known warning message when trying to ssh into a server: $ ssh whateverhost @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! …
Watchmaker
  • 729
  • 1
  • 7
  • 16
3
votes
1 answer

How do I enable fingerprint login in Domain Joined Windows 10 Creators via GPO?

I want to enable fingerprint login with GPO. I installed the Windows 10 1703 (Creators) ADMX files. First, I read that "Turn on convenience PIN sign-in" from "Computer/policies/admin templates/system/logon" is REQUIRED... Is this true? If so,…
Novox
  • 504
  • 1
  • 9
  • 25
3
votes
2 answers

Can I find local ssh private key from remote fingerprint?

Possibly I am missing something obvious but after getting fed up with 5 key limitation of ssh-agent I start looking for ways for a better ssh key management. If I create a new ssh key pair using ssh-keygen -t rsa, I can then use ssh-keygen -lf to…
Charles
  • 133
  • 5
2
votes
1 answer

validating an ejabberd fingerprint

I set up and tested an ejabberd-server. Ejabberd creates a SSL-Certificate itself during installation. Unfortunately I did not find any tutorial about how to get its fingerprint. this documentation shows how to create a certificate, but not how to…
coffeekid
  • 124
  • 2
  • 8
2
votes
2 answers

Postfix still complains that "certificate verification failed" even when "smtp_tls_security_level = fingerprint"

I'm attempting to use Postfix (version 2.6.6 on RHEL6) to connect to and send mail via a mail relay on our internal network. I want to connect with STARTTLS on port 25 (port 465 is not available on this server). The mail relay uses a self-signed…
fronzee
  • 165
  • 1
  • 2
  • 10
2
votes
1 answer

How to add fingerprint templates to active directory?

Is there any way to add fingerprint templates to active directory? If yes then please suggest number of possible ways.... and if there is any SDK or API through which we can achieve storing fingerprint image to a server ( windows Active Directory )?
user332965
2
votes
2 answers

Different ssh fingerprints on server. (MITM attack?)

When I try to ssh to my server in Germany from my UK laptop I get: IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! Someone could be eavesdropping on you right now (man-in-the-middle attack)! It is also possible that a host key has just been…
Wojtek B.
  • 161
  • 1
  • 7
1
vote
1 answer

Verify SSH Fingerprint about DNS SSHFP record fails

I have an Debian Jessie Server and I would like to verify the SSH HostKey about the DNS SSHFP record. I only provide the ed25519 and rsa algorithm to connect to the server. I have masquerade the server FQDN to kronos.example.local. I used this…
Volker Raschek
  • 307
  • 1
  • 5
  • 13
1
vote
0 answers

Why was the previous authenticity of the host ignored?

I'm on Ubuntu 14.04 Desktop. I have just logged into other machine (Ubuntu 14.04 Server) using ssh in one terminal. I'm still connected. When I did scp in another terminal (opened earlier) to move a file to the same other machine, it displayed: The…
Rodrigo
  • 65
  • 1
  • 9
1
vote
2 answers

Secure EC2 instance from logging without .pem file

I see here and here (under Connecting to Your Linux Instance if You Lose Your Private Key) ways to access EC2 instance without a .pem file that was created when the instance was created. I would like to secure my EC2 so NO-ONE without the .pem file…
Dejel
  • 195
  • 1
  • 1
  • 7
1
vote
1 answer

How to obtain the DSA fingerprint from a hosting server

this is not a duplicate of Get SSH fingerprint from remote server securely? My question is what are the ways to obtain the public-key fingerprint of a remote server. I have a shared hosting account on GoDaddy and I logged in using SSH, I now want to…
fiftyeight
  • 157
  • 1
  • 7
1
vote
2 answers

Generate fingerprint with PGP Public Key

I have a PGP public key and I need to get the fingerprint for it. My Public key is as such: -----BEGIN PGP PUBLIC KEY BLOCK----- mQlDBF4w............................ . . . =uYgH -----END PGP PUBLIC KEY BLOCK----- I tried using the command gpg…
Mervin Hemaraju
  • 105
  • 2
  • 13
1
2