“Remote host identification has changed” on server preventing SSHing in

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP








up vote
0
down vote

favorite












I just tried sshing into my server from my desktop after about a week of not having logged into it. I got the following message:



$ ssh me@192.168.x.xx
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:xxxx/xxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxx.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /root/.ssh/known_hosts:1
 remove with:
 ssh-keygen -f "/root/.ssh/known_hosts" -R 192.168.x.xx
ECDSA host key for 192.168.x.xx has changed and you have requested strict checking.
Host key verification failed.


But I'm confused, because I haven't made any changes to my server (Other questions here have stated that reinstalling an OS would yield this error.), and to my knowledge, my server isn't public facing. I had enabled ssh key-based authentication and disabled password authentication too.



I think I can just add the host key to my known hosts to get rid of the error, but I don't want to do that until I know what's the crux of the problem.



Any idea as to how this message randomly started appearing, how I can resolve this, and how I can secure my server better in the future?



THANKS!






networking server ssh security







share|improve this question

















  • 3




    Is your server locked to a fixed address? If the server hasn't changed but its IP address has changed it'll cause this warning (as its signatures is 'known' for a different IP address and thus 'different' machine....)
    – guiverc
    Feb 10 at 21:56











  • @guiverc yup, I have a static IP address on the server.
    – sos
    Feb 10 at 22:15










  • Also: my client (desktop trying to access the server) has recently updated Windows... may that have caused the error to begin occurring?
    – sos
    Feb 10 at 22:42










  • Update: followed steps here to check to make sure that everything was safe. Still unsure why the error began occurring at all.
    – sos
    Feb 11 at 6:09














up vote
0
down vote

favorite












I just tried sshing into my server from my desktop after about a week of not having logged into it. I got the following message:



$ ssh me@192.168.x.xx
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:xxxx/xxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxx.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /root/.ssh/known_hosts:1
 remove with:
 ssh-keygen -f "/root/.ssh/known_hosts" -R 192.168.x.xx
ECDSA host key for 192.168.x.xx has changed and you have requested strict checking.
Host key verification failed.


But I'm confused, because I haven't made any changes to my server (Other questions here have stated that reinstalling an OS would yield this error.), and to my knowledge, my server isn't public facing. I had enabled ssh key-based authentication and disabled password authentication too.



I think I can just add the host key to my known hosts to get rid of the error, but I don't want to do that until I know what's the crux of the problem.



Any idea as to how this message randomly started appearing, how I can resolve this, and how I can secure my server better in the future?



THANKS!






networking server ssh security







share|improve this question

















  • 3




    Is your server locked to a fixed address? If the server hasn't changed but its IP address has changed it'll cause this warning (as its signatures is 'known' for a different IP address and thus 'different' machine....)
    – guiverc
    Feb 10 at 21:56











  • @guiverc yup, I have a static IP address on the server.
    – sos
    Feb 10 at 22:15










  • Also: my client (desktop trying to access the server) has recently updated Windows... may that have caused the error to begin occurring?
    – sos
    Feb 10 at 22:42










  • Update: followed steps here to check to make sure that everything was safe. Still unsure why the error began occurring at all.
    – sos
    Feb 11 at 6:09












up vote
0
down vote

favorite









up vote
0
down vote

favorite











I just tried sshing into my server from my desktop after about a week of not having logged into it. I got the following message:



$ ssh me@192.168.x.xx
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:xxxx/xxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxx.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /root/.ssh/known_hosts:1
 remove with:
 ssh-keygen -f "/root/.ssh/known_hosts" -R 192.168.x.xx
ECDSA host key for 192.168.x.xx has changed and you have requested strict checking.
Host key verification failed.


But I'm confused, because I haven't made any changes to my server (Other questions here have stated that reinstalling an OS would yield this error.), and to my knowledge, my server isn't public facing. I had enabled ssh key-based authentication and disabled password authentication too.



I think I can just add the host key to my known hosts to get rid of the error, but I don't want to do that until I know what's the crux of the problem.



Any idea as to how this message randomly started appearing, how I can resolve this, and how I can secure my server better in the future?



THANKS!






networking server ssh security







share|improve this question













I just tried sshing into my server from my desktop after about a week of not having logged into it. I got the following message:



$ ssh me@192.168.x.xx
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
SHA256:xxxx/xxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxx.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /root/.ssh/known_hosts:1
 remove with:
 ssh-keygen -f "/root/.ssh/known_hosts" -R 192.168.x.xx
ECDSA host key for 192.168.x.xx has changed and you have requested strict checking.
Host key verification failed.


But I'm confused, because I haven't made any changes to my server (Other questions here have stated that reinstalling an OS would yield this error.), and to my knowledge, my server isn't public facing. I had enabled ssh key-based authentication and disabled password authentication too.



I think I can just add the host key to my known hosts to get rid of the error, but I don't want to do that until I know what's the crux of the problem.



Any idea as to how this message randomly started appearing, how I can resolve this, and how I can secure my server better in the future?



THANKS!






networking server ssh security




networking server ssh security






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Feb 10 at 21:46









sos

1




1







  • 3




    Is your server locked to a fixed address? If the server hasn't changed but its IP address has changed it'll cause this warning (as its signatures is 'known' for a different IP address and thus 'different' machine....)
    – guiverc
    Feb 10 at 21:56











  • @guiverc yup, I have a static IP address on the server.
    – sos
    Feb 10 at 22:15










  • Also: my client (desktop trying to access the server) has recently updated Windows... may that have caused the error to begin occurring?
    – sos
    Feb 10 at 22:42










  • Update: followed steps here to check to make sure that everything was safe. Still unsure why the error began occurring at all.
    – sos
    Feb 11 at 6:09












  • 3




    Is your server locked to a fixed address? If the server hasn't changed but its IP address has changed it'll cause this warning (as its signatures is 'known' for a different IP address and thus 'different' machine....)
    – guiverc
    Feb 10 at 21:56











  • @guiverc yup, I have a static IP address on the server.
    – sos
    Feb 10 at 22:15










  • Also: my client (desktop trying to access the server) has recently updated Windows... may that have caused the error to begin occurring?
    – sos
    Feb 10 at 22:42










  • Update: followed steps here to check to make sure that everything was safe. Still unsure why the error began occurring at all.
    – sos
    Feb 11 at 6:09







3




3




Is your server locked to a fixed address? If the server hasn't changed but its IP address has changed it'll cause this warning (as its signatures is 'known' for a different IP address and thus 'different' machine....)
– guiverc
Feb 10 at 21:56





Is your server locked to a fixed address? If the server hasn't changed but its IP address has changed it'll cause this warning (as its signatures is 'known' for a different IP address and thus 'different' machine....)
– guiverc
Feb 10 at 21:56













@guiverc yup, I have a static IP address on the server.
– sos
Feb 10 at 22:15




@guiverc yup, I have a static IP address on the server.
– sos
Feb 10 at 22:15












Also: my client (desktop trying to access the server) has recently updated Windows... may that have caused the error to begin occurring?
– sos
Feb 10 at 22:42




Also: my client (desktop trying to access the server) has recently updated Windows... may that have caused the error to begin occurring?
– sos
Feb 10 at 22:42












Update: followed steps here to check to make sure that everything was safe. Still unsure why the error began occurring at all.
– sos
Feb 11 at 6:09




Update: followed steps here to check to make sure that everything was safe. Still unsure why the error began occurring at all.
– sos
Feb 11 at 6:09















active

oldest

votes











Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "89"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1004983%2fremote-host-identification-has-changed-on-server-preventing-sshing-in%23new-answer', 'question_page');

);

Post as a guest






















active

oldest

votes













active

oldest

votes









active

oldest

votes






active

oldest

votes















 

draft saved


draft discarded















































 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1004983%2fremote-host-identification-has-changed-on-server-preventing-sshing-in%23new-answer', 'question_page');

);

Post as a guest
































































-

Popular posts from this blog

How do so many people here on Academia.SE, and in general, afford lavish higher education programs?

Image
Clash Royale CLAN TAG #URR8PPP up vote 45 down vote favorite 7 I graduated last year with a BS in Computer Science. I do not come from a particularly wealthy family, (very low middle class), and was only able to afford my education via school loans/scholarships and working low-wage jobs, with no support from my family or anyone else. I realize some scholarship/loan programs extend into grad school. But I don't think those cover all costs. Now I'm lucky enough to have a decent-paying salary in industry, along with benefits and living on my own, and I'm thinking one day (sooner rather than later) I'd like to try my hand at research or continue my degree, but these things cost money, in addition to my regular living expenses. I read posts here often about academic people being in positions of choosing between these crazy research grad programs, some in Japan, or Ireland (while they currently live in the U.S./U.K.) then moving around between countries/universit...
Read more

Trouble downloading packages list due to a “Hash sum mismatch” error

Image
Clash Royale CLAN TAG #URR8PPP .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty margin-bottom:0; up vote 331 down vote favorite 117 When I check for updates, I get a "Failed To Download Repository Information" error. This is what comes up under details: W: Failed to fetch gzip:/var/lib/apt/lists/partial/us.archive.ubuntu.com_ubuntu_dists_natty_main_source_Sources Hash Sum mismatch, E: Some index files failed to download. They have been ignored, or old ones used instead. apt share | improve this question edited Nov 12 '14 at 23:37 Braiam 49.5k 19 130 210 asked May 9 '11 at 20:55 Rob 5,300 10 26 40 add a comment  |  up vote 331 down vote favorite 117 When I check for updates, I get a "Failed To Download Repository Information" error. This is what comes up under details: W: Failed to fetch gzip:/var/lib/apt/lists/partial/us.archive.ubuntu.com_ubuntu_dists_nat...
Read more

How do I move numbers in filenames, in a batch renaming operation?

Image
Clash Royale CLAN TAG #URR8PPP up vote 10 down vote favorite 1 I have been trying to figure out how to rename files for the past few hours. I have 2000 files that are like this: file.1.pdb file.2.pdb file.3.pdb I would like to rename these files to something like: file.pdb.1 file.pdb.2 file.pdb.3 command-line batch-rename share | improve this question edited Mar 29 at 21:36 Eliah Kagan 79.6k 20 222 359 asked Mar 29 at 15:33 user812758 51 3 Didn't you mean bash ? – avazula Mar 29 at 15:38 4 @avazula No please read this article : en.wikipedia.org/wiki/Batch_renaming – Ali Razmdideh Mar 29 at 15:47 @PerlDuck yes ;) – Ali Razmdideh Mar 29 at 15:52 6 Possible duplicate of How to easily rename files using command line? – wjandrea Mar 29 at 16:09 2 Hey close voters...
Read more