Hi!
So I've been using RSA keys for SSHing into my computers, and it's generally been working fine (the generated keys are stored in the default location, ~/.ssh). But this morning, something changed.
I started getting the message when trying to connect that you usually get when you connect to a machine the first time without using RSA keys, the one that asks if you want to trust the host. It gives you an RSA fingerprint too, and when I compared it to the one from my generated SSH key, it didn't match.
Initially, this had me worried about a man-in-the-middle attack. But what I was actually able to find was that it matched the fingerprint in /private/etc/ssh_host_rsa_key.pub
So why the change? I've never touched the other key, I didn't even know it was there. Why isn't it continuing to work as it always has?
Any help would be greatly appreciated.
Thanks!
So I've been using RSA keys for SSHing into my computers, and it's generally been working fine (the generated keys are stored in the default location, ~/.ssh). But this morning, something changed.
I started getting the message when trying to connect that you usually get when you connect to a machine the first time without using RSA keys, the one that asks if you want to trust the host. It gives you an RSA fingerprint too, and when I compared it to the one from my generated SSH key, it didn't match.
Initially, this had me worried about a man-in-the-middle attack. But what I was actually able to find was that it matched the fingerprint in /private/etc/ssh_host_rsa_key.pub
So why the change? I've never touched the other key, I didn't even know it was there. Why isn't it continuing to work as it always has?
Any help would be greatly appreciated.
Thanks!