diff options
author | Scott Moser <smoser@ubuntu.com> | 2014-02-09 16:10:03 +0000 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2024-03-11 14:56:56 +0000 |
commit | 6b9bc7ba6d48ed340129f3e4edcd30a70f6e4a76 (patch) | |
tree | f6f7c70f47ac7680b2f84305d18f6c84d951c8ec | |
parent | e935bedc2e420db8dbc66bcb4babc871c1b54890 (diff) |
Mention ssh-keygen in ssh fingerprint changed warning
Author: Chris Lamb <lamby@debian.org>
Bug: https://bugzilla.mindrot.org/show_bug.cgi?id=1843
Bug-Ubuntu: https://bugs.launchpad.net/bugs/686607
Last-Update: 2023-12-11
Patch-Name: mention-ssh-keygen-on-keychange.patch
-rw-r--r-- | sshconnect.c | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/sshconnect.c b/sshconnect.c index 1d5bcc782..23f79ed2b 100644 --- a/sshconnect.c +++ b/sshconnect.c @@ -1277,9 +1277,13 @@ check_host_key(char *hostname, const struct ssh_conn_info *cinfo, error("%s. This could either mean that", key_msg); error("DNS SPOOFING is happening or the IP address for the host"); error("and its host key have changed at the same time."); - if (ip_status != HOST_NEW) + if (ip_status != HOST_NEW) { error("Offending key for IP in %s:%lu", ip_found->file, ip_found->line); + error(" remove with:"); + error(" ssh-keygen -f '%s' -R '%s'", + ip_found->file, ip); + } } /* The host key has changed. */ warn_changed_key(host_key); @@ -1291,6 +1295,9 @@ check_host_key(char *hostname, const struct ssh_conn_info *cinfo, error("Offending %s key in %s:%lu", sshkey_type(host_found->key), host_found->file, host_found->line); + error(" remove with:"); + error(" ssh-keygen -f '%s' -R '%s'", + host_found->file, host); /* * If strict host key checking is in use, the user will have |