Timeline for In the Bitvise Client Software, Host Key Verification window shows public key information not generated by me
Current License: CC BY-SA 4.0
12 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Mar 21 at 17:17 | vote | accept | Jerry Fleurival | ||
| Mar 21 at 16:58 | comment | added | Jerry Fleurival | I used ssh-keyscan command from my hosting provider's cpanel terminal tool. I can now see the server's host key matches the key that is displayed on host verification window. Then, when I accepted it, I was prompted for the key's passphrase and, I was able to connect successfully. | |
| Mar 21 at 10:44 | comment | added | grawity_u1686 | Prompt for your key's passphrase (or your password) will show up next, after host verification. (Host keys are the first thing to be checked, just like TLS certificates.) You can ask the server owner for the host key fingerprint (if it's your own server, the fingerprints might be in the console log), or you can just 'Accept' and hope for the best – if you're connecting from a private network it's usually fine. Client software remembers the keys of each host, so even if you accept without verifying anything, it will still protect against unexpected changes of the host key in the future. | |
| Mar 21 at 10:36 | comment | added | Jerry Fleurival | So, when you accept the connection or before it, Will it prompt me for my passphrase or something? How can you tell if it is safe? | |
| Mar 21 at 10:20 | comment | added | grawity_u1686 | Yes, with emphasis on "SSH servers generate their host keys". | |
| Mar 21 at 10:19 | comment | added | Jerry Fleurival | "SSH servers indeed generate their host keys by default, without admin involvement. But that has nothing to do with your SSH client software." --- As stated by you, I see. | |
| Mar 21 at 10:06 | comment | added | grawity_u1686 | They're not supposed to match, because the host key is not the user key; they're two different keys – that's what the entire post was about! | |
| Mar 21 at 10:02 | comment | added | Jerry Fleurival | The RSA host key fingerprint and the user fingerprint both in a SHA256 format don't match. | |
| Mar 21 at 4:55 | comment | added | grawity_u1686 | Which fingerprint seen where doesn't match what? | |
| Mar 20 at 23:53 | comment | added | Jerry Fleurival | Oh okay I see. But, the SHA256 fingerprint does not match. | |
| Mar 12 at 12:00 | history | edited | grawity_u1686 | CC BY-SA 4.0 |
deleted 16 characters in body
|
| Mar 12 at 11:54 | history | answered | grawity_u1686 | CC BY-SA 4.0 |