Man in the Middle

[bll0]

Hi there!

I've set up a ssh-server on my machine and know I am able to log into into (as you might know ) from a distance by a dyndns-account.

But since yesterday I got an error - message that the rsa-key identifying my server is invalid and that there might be a "man in the middle".

I would be pleased if someone could tell me something about this, or post a link or can give me some information about what can I do.

Thanks a lot, the "man at one end"

-Azazel

[jhgz1]

this means that keys where changed, either by an authorized or unauthorized person. if you are sure your machine is not compromised, remove the old key from the client and again connect to the server as before.
_________________
Bei Gentoo mithelfen wollen und kein Programmierer? Gentoo sucht Übersetzer, die bereit sind kontinuierlich mitzuarbeiten.

[CaT]

hi

some informations about mim:
http://en.wikipedia.org/wiki/Man_in_the_middle

[bll0]

Well, now I know what a man in the middle is, but how can I do something AGAINST it??? Because I would like to use my sshd without beeing spyed by someone else.

I'm not sure if the message of ssh is wrong, I'm also not sure if it is safe do connect to my computer through a ssh-tunnel.

So, what can I do??
_________________
I need a girl whose name doesn't end in .jpg

[josh_Borke]

i would generate a new key on the server, and copy it to your client (other than over the network), so that you can be sure that it is not comprimised(sp?) and then try connecting to your server. That way you can be sure if you are indeed suffering from a man-in-the-middle attack. If you continue to receive messages, I would make sure that the key wasn't being changed on the server. HTH

-josh

[bll0]

This seems to be a solution. But how do create that key? something with gpg or ssh?

Would be nice if you would tell me!

Thanks a lot!

[codemaker]

man ssh-keygen might do the trick