116
edits
Ssh-fingerprints: Difference between revisions
Jump to navigation
Jump to search
no edit summary
(Created page with "If the host you're ssh'ing into isn't know yet, you'll be asked to confirm the fingerprint of the target host. To do so, do the following: # Find someone that has working SSH to the host or find other means of access to the host that doesn't require SSH. # On the target host, run the command 'ssh-keyscan <host> | ssh-keygen -lf -'. Replace '<host>' with the target's hostname. # Verifiy if the signature matches with the one shown by the initial ssh attempt. Make sure to c...") |
No edit summary |
||
| Line 3: | Line 3: | ||
# On the target host, run the command 'ssh-keyscan <host> | ssh-keygen -lf -'. Replace '<host>' with the target's hostname. | # On the target host, run the command 'ssh-keyscan <host> | ssh-keygen -lf -'. Replace '<host>' with the target's hostname. | ||
# Verifiy if the signature matches with the one shown by the initial ssh attempt. Make sure to check/match for the same algorithm. | # Verifiy if the signature matches with the one shown by the initial ssh attempt. Make sure to check/match for the same algorithm. | ||
Example: | Example: | ||
On the initial host: | On the initial host: | ||
root@screwdriver:~# ssh scorpion | root@screwdriver:~# ssh scorpion | ||
| Line 14: | Line 16: | ||
On the target host: | On the target host: | ||
root@scorpion:~# ssh-keyscan scorpion | ssh-keygen -lf - | root@scorpion:~# ssh-keyscan scorpion | ssh-keygen -lf - | ||
# scorpion:22 SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u3 | \# scorpion:22 SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u3 | ||
256 SHA256:lklsjdfsd8fd8*SDHANNAoaiodfnslakkfndsldkfn scorpion (ECDSA) | 256 SHA256:lklsjdfsd8fd8*SDHANNAoaiodfnslakkfndsldkfn scorpion (ECDSA) | ||
3072 SHA256:LKSdfjsi878sijn3lAUHUI&*GNSLFSadhofsnlka scorpion (RSA) | 3072 SHA256:LKSdfjsi878sijn3lAUHUI&*GNSLFSadhofsnlka scorpion (RSA) | ||