Collaborate Disseminate
I am troubleshooting an SFTP upload script on a device in the field. The script worked previously, but now gets a different host key fingerprint when it tries to connect. There should have been no changes to the system that would trigger t… Continue reading Are there multiple ways to hash RSA key fingerprints from the same public key?
I have created an open-ssh keypair using ssh-keygen with the defaults, and encrypted the private key with a passphrase. I already know how to derive the public-key from the private-key using ssh-keygen -y, for which I will need to enter th… Continue reading Is it possible to retrieve the public-key from an encrypted or passphrase-protected ssh private-key?
I am on hack the box and I ran nmap -A IP_address and this is the output I received. I am wondering if I can do something with the ssh hostkey.
I want to use a GPG key instead of an SSH key. Looking online I found several guides on how to do it. But these guides are about using GPG for convenience. I instead want to know the pros and cons from the security perspective.
Firstly loo… Continue reading What are the security implications of using GPG instead of SSH keys for authentication
I’m wanting to use hashbackup to backup one server (A) to another server (B).
Hashbackup can send the backup to server B, if server A has server B’s key (public?) for passwordless ssh.
I haven’t used keys prior. I prefer ssh’ing with passw… Continue reading ssh authentication: is it possible to have password OR keys?
In an openssh-server login to a GNU/Linux machine
to use a private ssh key encrypted with an N-characters passphrase, then sshd_config:
PasswordAuthentication no
PubkeyAuthentication yes
is it equivalent to use a login with a password tha… Continue reading ssh server encrypted key vs password login [duplicate]
I am doing some tests around ssh. From what I have seen a server usually has multiple host keys. When a client tries to connect, it tries to negotiate which key types to use DSA, RSA, ECDSA, etc. But on key signature confirmation by the us… Continue reading SSH to github.com only adds RSA keys – excludes ed25519 host keys
I noticed my known_hosts file has many (15) lines, and I’m not sure why. I didn’t think I had connected to this many servers. (I think this is what the known_hosts file is for, based on my limited understanding of the answer to this post.)… Continue reading Is it possible somebody could have edited my known_hosts file to connect to malicious servers?
I am connecting to remote hosts via jump host where I verify only the jump host’s host key, but turn off host key verification for the target hosts.
the ssh command arguments look like this:
-o StrictHostKeyChecking=no -o ProxyCommand=&quo… Continue reading is MITM attack possible when we verify only the jump host’s fingerprint (host key)?
I am trying to establish SSH connection to a server through a program.
As a pre-requisite to be able to do so, I am getting the publicly available server host key using ssh-keyscan <hostname> and adding it to my known_hosts file. I d… Continue reading Is getting server host key with ssh-keyscan secure?