dropbear icon indicating copy to clipboard operation
dropbear copied to clipboard
verified publisher icon mkj

host key not found

Open ghost opened this issue 5 years ago • 1 comments

Issue occurs in this situation: trusted hosts file contains a host key for a target, with format type: ecdsa-sha2-nistp256

new version of ssh now supports host key format: ssh-ed25519 when ssh tries to connect, it will use host key format ssh-ed25519, and will not find it in the known_hosts file, and proceed to say the target is not in the trusted hosts file.

However, the target is in fact in the trusted host file, just under a different key format.

Perhaps ssh should check the host key format used in the trusted hosts file, and try to verify host using that key/format.

ghost avatar Apr 05 '21 12:04 ghost

@ben-sedg Are you getting a message similar to this:

root@OpenWrt:~# ssh [email protected]

ssh: Connection to [email protected]:22 exited:

ssh-ed25519 host key mismatch for 192.168.1.2 !
Fingerprint is sha1!! **BLANKED**
Expected sha1!! 8

I also found this answer which may be relevant to users coming from OpenWRT.

woeisme avatar Jan 31 '22 11:01 woeisme