I am able to connect with password as the initial authentication and then accepting Host Key after hitting the login button. The software show host key verification in order to proceed.

What I know:

• It is bad to accept Host key without verifying that your fingerprints matches because bad actors could mess around with your system such as sending virus to your computer or stealing sensitive information.

• I am assuming that is a dummy Host key info from the software itself. Maybe to insure you have matching fingerprints.

• Software is encouraging you generate a host key as an added security measure other than password or you can just login with just the Host key.

• If you click the help link on the software you will see:

Host key manager: Click this link to open Bitvise Host Key Management where you can review the SSH server host keys that you trust. The same host key settings will be used by all Bitvise SSH clients. Host keys are imported by connecting to an SSH server and accepting the host key in the Host Identification Confirmation dialog that appears.

The Problem(s):

1. After hitting the login button, Host Key Verification window shows up with host key info. (if intended, shouldn't it be blank.)

2. For Public Key Authentication, I tried generating keypair from client key manager and then I exported public key to my webserver and it said key invalid.

Software source(s):

• https://www.bitvise.com/ssh-client
• https://www.bitvise.com/getting-started-connect-first-time
• https://www.bitvise.com/getting-started-public-key-bitvise

Other Sources

• https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server

• https://www.preveil.com/blog/public-and-private-key/#:~:text=Public%20and%20Private%20Key%20Encryption,decrypt%20the%20message%20from%20Bob.

The Problem(s):

1. After hitting the login button, Host Key Verification window shows up with host key info. (Not generated by me. Should this be happening by default.)

2. For Public Key Authentication, I tried generating keypair from client key manager and then I exported public key to my webserver and it said key invalid. (What are the things that could be wrong here?)

3. If I generate or import keypair, the Host Key Verification window does not show I generated. (This is where you are prompted to accept fingerprint info.)

What I know:

• It is bad to accept Host key without verifying that your fingerprints matches because bad actors could mess around with your system such as sending virus to your computer or stealing sensitive information.

• I am assuming that is a dummy Host key info from the software itself. Maybe to insure you have matching fingerprints.

• Software is encouraging you generate a host key as an added security measure other than password or you can just login with just the Host key.

• If you click the help link on the software you will see:

Host key manager: Click this link to open Bitvise Host Key Management where you can review the SSH server host keys that you trust. The same host key settings will be used by all Bitvise SSH clients. Host keys are imported by connecting to an SSH server and accepting the host key in the Host Identification Confirmation dialog that appears.

Software source(s):

• https://www.bitvise.com/ssh-client
• https://www.bitvise.com/getting-started-connect-first-time
• https://www.bitvise.com/getting-started-public-key-bitvise

Other Sources

• https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server

• https://www.preveil.com/blog/public-and-private-key/#:~:text=Public%20and%20Private%20Key%20Encryption,decrypt%20the%20message%20from%20Bob.

I am able to connect with password as the initial authentication and then accepting Host Key after hitting the login button. The software show host key verification in order to proceed.

What I know:

• It is bad to accept Host key without verifying that your fingerprints matches because bad actors could mess around with your system such as sending virus to your computer or stealing sensitive information.

• I am assuming that is a dummy Host key info from the software itself. Maybe to insure you have matching fingerprints.

• Software is encouraging you generate a host key as an added security measure other than password or you can just login with just the Host key.

• If you click the help link on the software you will see:

Host key manager: Click this link to open Bitvise Host Key Management where you can review the SSH server host keys that you trust. The same host key settings will be used by all Bitvise SSH clients. Host keys are imported by connecting to an SSH server and accepting the host key in the Host Identification Confirmation dialog that appears.

The Problem(s):

1. After hitting the login button, Host Key Verification window shows up with host key info. (if intended, shouldn't it be blank.)

2. For Public Key Authentication, I tried generating keypair from client key manager and then I exported public key to my webserver and it said key invalid.

Software source(s):

• https://www.bitvise.com/ssh-client
• https://www.bitvise.com/getting-started-connect-first-time
• https://www.bitvise.com/getting-started-public-key-bitvise

Other Sources

• https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server

I am able to connect with password as the initial authentication and then accepting Host Key after hitting the login button. The software show host key verification in order to proceed.

What I know:

• It is bad to accept Host key without verifying that your fingerprints matches because bad actors could mess around with your system such as sending virus to your computer or stealing sensitive information.

• I am assuming that is a dummy Host key info from the software itself. Maybe to insure you have matching fingerprints.

• Software is encouraging you generate a host key as an added security measure other than password or you can just login with just the Host key.

• If you click the help link on the software you will see:

Host key manager: Click this link to open Bitvise Host Key Management where you can review the SSH server host keys that you trust. The same host key settings will be used by all Bitvise SSH clients. Host keys are imported by connecting to an SSH server and accepting the host key in the Host Identification Confirmation dialog that appears.

The Problem(s):

1. After hitting the login button, Host Key Verification window shows up with host key info. (if intended, shouldn't it be blank.)

2. For Public Key Authentication, I tried generating keypair from client key manager and then I exported public key to my webserver and it said key invalid.

Software source(s):

• https://www.bitvise.com/ssh-client
• https://www.bitvise.com/getting-started-connect-first-time
• https://www.bitvise.com/getting-started-public-key-bitvise

Other Sources

• https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server

• https://www.preveil.com/blog/public-and-private-key/#:~:text=Public%20and%20Private%20Key%20Encryption,decrypt%20the%20message%20from%20Bob.

I am able to connect with password as the initial authentication and then accepting Host Key after hitting the login button. The software show host key verification in order to proceed.

What I know:

• It is bad to accept Host key without verifying that your fingerprints matches because bad actors could mess around with your system such as sending virus to your computer or stealing sensitive information.

• I am assuming that is a dummy Host key info from the software itself. Maybe to insure you have matching fingerprints.

• Software is encouraging you generate a host key as an added security measure other than password or you can just login with just the Host key.

• If you click the help link on the software you will see:

Host key manager: Click this link to open Bitvise Host Key Management where you can review the SSH server host keys that you trust. The same host key settings will be used by all Bitvise SSH clients. Host keys are imported by connecting to an SSH server and accepting the host key in the Host Identification Confirmation dialog that appears.

The Problem(s):

1. After hitting the login button, Host Key Verification window shows up with host key info. (if intended, shouldn't it be blank.)

2. For Public Key Authentication, I tried generating keypair from client key manager and then I exported public key to my webserver and it said key invalid.

Software source(s):

• https://www.bitvise.com/ssh-client
• https://www.bitvise.com/getting-started-connect-first-time
• https://www.bitvise.com/getting-started-public-key-bitvise

** Other Sources **

• https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server

I am able to connect with password as the initial authentication and then accepting Host Key after hitting the login button. The software show host key verification in order to proceed.

What I know:

• It is bad to accept Host key without verifying that your fingerprints matches because bad actors could mess around with your system such as sending virus to your computer or stealing sensitive information.

• I am assuming that is a dummy Host key info from the software itself. Maybe to insure you have matching fingerprints.

• Software is encouraging you generate a host key as an added security measure other than password or you can just login with just the Host key.

• If you click the help link on the software you will see:

Host key manager: Click this link to open Bitvise Host Key Management where you can review the SSH server host keys that you trust. The same host key settings will be used by all Bitvise SSH clients. Host keys are imported by connecting to an SSH server and accepting the host key in the Host Identification Confirmation dialog that appears.

The Problem(s):

1. After hitting the login button, Host Key Verification window shows up with host key info. (if intended, shouldn't it be blank.)

2. For Public Key Authentication, I tried generating keypair from client key manager and then I exported public key to my webserver and it said key invalid.

Software source(s):

• https://www.bitvise.com/ssh-client
• https://www.bitvise.com/getting-started-connect-first-time
• https://www.bitvise.com/getting-started-public-key-bitvise

Other Sources

• https://www.digitalocean.com/community/tutorials/how-to-configure-ssh-key-based-authentication-on-a-linux-server