Security :: SSH: ECDSA / RSA Conflict - Warning: The ECDSA Host Key For '<snip>' Differs From The Key For The IP Address '<snip>'
Apr 2, 2011
I've used ssh for a long time, but recently I set up a new server on my LAN. Often when I try to connect to it I get a message like so:
Code:
Warning: the ECDSA host key for '<snip>' differs from the key for the IP address '<snip>' Offending key for IP in /home/<snip>/.ssh/known_hosts:14 Matching host key in /home/<snip>/.ssh/known_hosts:12 Are you sure you want to continue connecting (yes/no)? What is weird is that, in the known_hosts file, the entry for the ip address (line 14) is a "ssh-rsa" type, but the entry for the hostname is a "ecdsa-sha2-nistp256", even though they both connect to the same server. What is going on here?
I have been trying to write a simple snip of bash shell code to import from 1 to 100 records into a Bash array.
I have a CSV file that is structured like: record1,item1,item2,item3,item4 record2,item1,item2,item3,item4 record3,item1,item2,item3,item4 record4,item1,item2,item3,item4
And would like to get this data into corresponding arrays as such: $record1[item1-4] $record2[item1-4] $record3[item1-4] $record4[item1-4]
I've been trying to get an ECDSA certificate to work for my postfix installation, however, it seems that when I try to use the aECDSA protocol with a client the server gives "no shared cipher" errors.
I have a project needing ecdsa and ec support in Openssl. Unfortunatly the openssl in CentOS 5.6 Final are built without this functionality. As my experience with CentOS are a little on the fresh side, I would like to know my options in this case.
How I can create key pair as ecdsa?
After I upgrade openssh until version 5.8p1, It's not work on command ssh-keygen -t ecdsa 256, I got feedback "unknown key type ecdsa "...
What I have suppose to do? when I use openssl new update my server can't work properly again, so I decided to installation again.
I am running fedora12 in my machine and used virtualbox. I have 3 virtual machine running linux, xp and fedora as well. I have used linux as my gateway and configured NAT for my xp and fedora machine which is under the ip of 192.168.1.0 network.. Everything is fine but often i get error message in my xp machine that says 'there is an ip address conflict'.I just wonder there are only 2 machine on that network and how can there be a ip conflict(i have used a static ip for xp and fedora virtual machine).My ip address for linux is (192.168.5.x and 192.168.1.101). XP (192.168.1.1). Fedora (192.168.1.50).
I was particulary suprised to have nothing in my logs regarding an IP address conflict in Linux compared to the windows and its popup !Did I miss something in the logs ? Or is there someting to configure to have it ?Otherwise can I do something to have the date in the dmesg log file ?Here my story about this problem :My linux machine was monitored by Nagios so i've seen some Up/down/up/down phenomene when I came to work this morning. I tried to figured out what's wrong browsing the logs (messages & dmesg & mail/root)... but nothing usefull so far...Then I hearded that a collegue booted a old Windows machine the day before. I checked this machine and there was the classic windows popup regarding a IP address conflict! So that was the problem, the Windows machine have the same IP than de Linux box.I was particulary suprised to have nothing in my logs regarding an IP address conflict in Linux compared to the windows and its popup !Did I miss something in the logs ? Or is there someting to configure to have it ?Otherwise can I do something to have the date in the dmesg log file ?Linux : CentOS 5.4 64bitsWindows : Windows server 2003 32 bits
Im an academic (university networks and security lecturer) studying/teaching network and operating system security, and inspired by the work of Hovav Shacham set about testing ASLR on linux. Principley I did this by performing a brute force buffer overflow attack on Fedora 10 and Ubuntu 9. I did this by writting a little concurrent server daemon which accidently on purpose didnt do bounds checking.
I then wrote a client to send it a malicious string brute forcing guessed addresses which caused a return-to-libc to the function usleep with a parameter of 16m causing a delay of 16 seconds as laid out in [URL] Once I hit the delay I new I had found the function and could calculate delta_mmap allowing me to create a standard chained ret-to-libc attack. All of that works fine. However .... To complete my understanding I am trying establish where I can find the standard base address for ubuntu 9 (and other distros) for the following, taken from Shacham:-
Quote:
[code]....
/proc/uid/maps gives me some information but not the base address ldd also gives me the randomised starting address for sections in the user address space but neither gives me the base address. Intrestingly ... when a run ldd with aslr on for over (about) 100 times and checked the start point of libc I determined that the last 3 (least significant) hex digits were always 0's and the fist 4 (most significant) where between 0xB7D7 and 0xB7F9. To me this indicated that bits 22-31 were fixed and bits 12-21 were randomized with bits 11-0 fixed. Although even that doesnt define the boundaries observed correctly.
Note: I am replicating the attack to provide signatures to detect it using IDS, and for teaching purposes. I am NOT a hacker and if needed to could reply from my .ac.uk email address as verification.
I am trying to use a ZTE AC2726 USB EVDO Modem on openSuSE Linux 11.3 Gnome to connect to the internet. I have edited the /etc/wvdial.conf file as follows:
When I execute the wvdial command on the terminal the following error appears joey-suse:~ # wvdial --> WvDial: Internet dialer version 1.60 --> Cannot get information for serial port. --> Initializing modem. --> Sending: ATZ ATZ OK .....
The /etc/resolv.conf file has the DNS addresses as below nameserver 212.49.70.22 nameserver 212.49.70.23
How do I resolve this and connect to the internet?
i am new to linux . i have the basic knowledge of networking. a week ago i installed debian Lenny version on an old pentium 3.in addition i installed a ddclient configured it according to many tutorials....i searched google a few days but didnt find my case.i ran the folowing command :
i have the basic knowledge of networking. a week ago i installed debian Lenny version on an old pentium 3. in addition i installed a ddclient configured it according to many tutorials.i searched google a few days but didnt find my case. i ran the folowing command :
I am using Fedora 14 (64 bit version) Can't start XAWTV. Returns this error: $ xawtv This is xawtv-3.99.rc6, running on Linux/x86_64 (2.6.35.12-90.fc14.x86_64) xinerama 0: 1920x1080+0+0 WARNING: No DGA direct video mode for this display. WARNING: keeping fbuf pitch at: 7680, as no base addr was detected WARNING: couldn't find framebuffer base address, try manual configuration ("v4l-conf -a <addr>") v4l2: WARNING: framebuffer base address mismatch v4l2: me=(nil) v4l=(nil) Warning: Missing charsets in String to FontSet conversion Warning: Missing charsets in String to FontSet conversion Oops: can't load any font
i installed slackware current straight(make iso from it and installed on clean disk) and i installed Multilib current from alien and now when i wanna compile wine source its write
"configure: OpenCL 32-bit development files not found, OpenCL won't be supported. configure: libsane 32-bit development files not found, scanners won't be supported. configure: gstreamer-0.10 base plugins 32-bit development files not found, gstreamer support disabled
[code].....
I checked i got that libaries in /lib and /lib64 why it doesent work it was working on slackware 13.1 with multilib
I am setting up a server, with a static IP address. I thought I did the setup correctly, including setting up the static IP address. When the system restarted, I saw a message flash about some other host already uses address 72.86.26.xxx
Then, once logged in, I got a system message: System is not receiving updates, check network connection.
I went to System: Network Configuration, and under Devices, I saw:
Inactive Device: eth0
I clicked on activate, and I received the same message: some other host already uses address 72.86.26.xxx
The file /etc/sysconfig/networking/devices/ifcfg-eth0 reads:
I am using Fedora 7 in my server. Currently windows server 2003 (Active Directory integrated with DNS) is running. I want to switch my DNS to Linux. In my small organization there are only 20 users using static IP address and the IP are mostly permanent. so should deploy name server or I just populate eateries in /etc/hosts file ?
What is the command to show the host name of the ip address?Suppose, I've an ip address like 209.191.122.70, now I want to know its host name.What is the command for that?
If I have a dnsmasq server and it dished out a IP address that I don't want it to and it still gives it to my machine no matter how many times I restart windows and issue ipconfig /renew|release or enable/disable the adapter, how do I force it to give my windows machine an IP I want it to have?
The only way I've accomplished this in the past is by rebooting my slackware system.
Using slackware 12.2, xfce, Firefox 3.0.16 and for the past few days i have been getting Persistent System Security Window that looks like MS Firewall and you can't click on the X or Cancel because then it activates a so called security analysis with green progress bar. I open a terminal real quick and issue pkill firefox command.I have been trying to get to the basicconfig site to follow tutorial on firefox security update but that window keeps comming back.I emptied out my /tmp files but i am still having same problem and don't know what to do
At work we run DHCP. hostnames have the format: computername.city.mycompany.com
I have a laptop runing Fedora 13 and a desktop I use for backups, etc. My laptop is named copernicus. Desktop is named galileo. If ping either hostname from itself I get back the localhost IP address. If I ping the fully resolved hostname it tells me unknown host. The desktop is exporting an NFS share I use for backing up work data. I need the laptop to be able to resolve host names to mount the share since we use DHCP. The desktop is dual boot and if it is booted into windows my laptop can resolve the hostname properly. What do I need to do in Fedora to get it to register a hostname with the DNS and/or DHCP server? Should the domain and the search path below both say the same thing?
Here is resolv.conf on the laptop (I am at home). The desktop looks the same, except for a different nameserver. Both computers can resolve other hostnames, just not each other.
this issue which has suddenly occurred on both my Desktop and my Laptop. When I try to configure an IP address to any interface I get the following error....
I get this for ethernet interfaces as well. I do not understand what is different as I was able to configure the ip address only the day before yesterday on the laptop..? The Desktop has had this issue for about 3 weeks now.
