ssh登录错误ECDSA host key for ip has changed和Offending key for IP in /root/.ssh/known_hosts:1

最新推荐文章于 2023-09-12 18:42:49 发布
最新推荐文章于 2023-09-12 18:42:49 发布
阅读量2.2k 收藏 2
点赞数
分类专栏: linux 文章标签: ssh登录错误ECDSA host key for ip has ch Offending key for IP in /root/.ssh/
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_43865381/article/details/102816263
版权

首先我跟大家说一下我的遇到的问题,我这边有一台虚拟机服务器的ip地址有人改动了,之前服务器的地址为172.18.2.248,不知道怎么回事,ip地址变为172.18.2.237首先要改动ip,改动的操作如下:

首先使用ifconfig的命令看一下,目前你使用的那个网络配置:
eno16777736: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
        inet 172.18.2.237 netmask 255.255.255.0  broadcast 172.18.2.255
        inet6 fe80::20c:29ff:fe3a:6b1  prefixlen 64  scopeid 0x20<link>
        ether 00:0c:29:3a:06:b1  txqueuelen 1000  (Ethernet)
        RX packets 174770  bytes 16314429 (15.5 MiB)
        RX errors 0  dropped 580  overruns 0  frame 0
        TX packets 18457  bytes 2849217 (2.7 MiB)
        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
  这时候需要改动/etc/sysconfig/network-scripts目录下的
  ifcfg-eno16777736文件中的IPADDR=172.18.2.237的内容,改成172.18.2.248
  然后进行 /etc/init.d/network restart的操作

network启动成功后使用ssh 172.18.2.248节点的是后出现以下报错:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@       WARNING: POSSIBLE DNS SPOOFING DETECTED!          @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
The ECDSA host key for node03 has changed,
and the key for the corresponding IP address 172.18.2.248
has a different value. This could either mean that
DNS SPOOFING is happening or the IP address for the host
and its host key have changed at the same time.
Offending key for IP in /root/.ssh/known_hosts:1
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the ECDSA key sent by the remote host is
f2:aa:b7:f8:15:94:80:e6:e9:b2:36:69:92:24:e8:8b.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending ECDSA key in /root/.ssh/known_hosts:9
Password authentication is disabled to avoid man-in-the-middle attacks.
Keyboard-interactive authentication is disabled to avoid man-in-the-middle attacks.

主要原因是因为之前本地访问过172.18.2.248的服务器,会把服务器(172.18.2.248登录标识证书记录下来,下次登录时会去比对之前的记录,由于修改了ip导致不能继续登录。
解决操作:

172.18.2.248执行
mv  /root/.ssh/known_hosts /root/.ssh/known_hosts.bak

随后在其他节点切换到172.18.2.248的时候报:

Warning: the ECDSA host key for 'node03' differs from the key for the IP address '172.18.2.248'
Offending key for IP in /root/.ssh/known_hosts:1
Matching host key in /root/.ssh/known_hosts:16
Last login: Tue Oct 29 20:07:12 2019 from node02

这时候对node02节点操作,操作步骤如下:

根据报错的信息:
对节点node02的/root/.ssh/known_hosts的第1行和16行进行删除,随后再执行
ssh-copy-id node03
在node02节点上切换到node03就不会报任何错误

参考链接:https://www.cnblogs.com/cap-rq/p/10155098.html
https://blog.csdn.net/qq_34901049/article/details/99828967

justdoit180
关注
  • 0
    点赞
  • 2
    收藏
    觉得还不错? 一键收藏
  • 1
    评论
专栏目录
plsqldev12.0.4.1826x64主程序+ v12中文包+keygen
07-12
64位版本的 PLSQL 正式版,只能运行在64位系统中,需要你安装 64 位的 Oracle11g 或 Oracle12c 客户端。 安装中文包时请注意安装路径是否为PLSQL程序的路径。 备注:新版本Ribbon启用了 Ribbon 界面,改动较大,不习惯的建议不要更新。 部分插件会加载失败。 New features Ribbon User Interface PL/SQL Developer now uses a new Ribbon User Interface instead of a Menu User Interface: The Quick Access Toolba
PLSQL.Developer(X64) v12.0.1.1814 主程序+ v11中文包+keygen
02-20
64位版本的 PLSQL 正式版,只能运行在64位系统中,需要你安装 64 位的 Oracle11g 或 Oracle12c 客户端。 安装中文包时请注意安装路径是否为PLSQL程序的路径。 备注:新版本Ribbon启用了 Ribbon 界面,改动较大,不习惯的建议不要更新。 部分插件会加载失败。 Ribbon User Interface PL/SQL Developer now uses a new Ribbon User Interface instead of a Menu User Interface: The Quick Access Toolbar above the ribbon contains the most frequently used functions, so that they are always immediately available. You can customize the Quick Access Toolbar to your own liking. Users that prefer a menu-like system to preserve screen real estate can select to automatically hide the ribbon. In the preferences you can select an option to revert to the familiar toolbar layout from PL/SQL Developer 11.0 and earlier. Single Document Interface On the "View" ribbon you can now choose between a Single Document Interface (SDI) or Multiple Document Interface (MDI - the same as in PL/SQL Developer 11.0 and earlier). In SDI mode you always see just one maximized window. A tab control above the window allows you to quickly switch between the windows: General User Interface Enhancements PL/SQL Developer is now fully compliant with High-DPI screens such as 4K monitors and notebooks. All controls and images will scale with resolution (some Plug-Ins may still need to be enhanced). Click on the image below to enlarge this example of a 15" 4K notebook (250% DPI): All window types now have a specific icon color, so that you can quickly identify the type in the Window List, in the SDI tab control, in the window titles, and so on. The transaction status is now visible in the status bar of a window, next to the "Saved" and "Executing" indicators. Added user interface preference "Preselect current user for object selection lists". PL/SQL Clipboard The new PL/SQL Clipboard is a dockable tool that stores the history of all SQL and PL/SQL code you copy to the Windows clipboard, so that you can paste the clipboard item again in the future. It has a filter function so that you can quickly find a clipboard item based on its contents: At the bottom you see the PL/SQL Clipboard history items. Clicking on an item will show the text with syntax highlighting in the preview pane, and will show the timestamp above the preview pane. Double-click on an item to paste the text in the cursor location of the current editor or drag & drop it to a specific location in an editor. You can use the editor preferences to configure when and how items are added to and deleted from the PL/SQL Clipboard. Debugger Enhancements You can now display compound variable values such as user-defined types, records and cursors: Support has been added for Error Breakpoints, which allow you to break execution when a specific exception (handled or unhandled) occurs: Breakpoints can now be saved and loaded. Debug object privileges can now be granted and revoked from the user interface. Code Assistant Enhancements The Code Assistant can now include column names from a DML statement context without using an alias: The Code Assistant can now describe sub-records. The Code Assistant now includes an <All> choice for default object type constructors. The Code Assistant can now include synonyms for user object lists. The Code Assistant no longer pre-selects <All> after typing part of a parameter/column name. SQL Window Enhancements A new preference has been added: "Null value cell color for mandatory columns". This allows you to quickly identify mandatory columns when adding new records: The result set selection can now be copied as an expression list: "column in (value, value, ...)" by right-clicking on a selection and selecting "Copy as expression list" from the popup menu. This allows you to quickly build a where clause based on the selection: When viewing or editing LOB's the contents for common data formats will automatically be recognized, so that an external viewer or editor can be invoked: Changes made and saved in an external editor will automatically be propagated to the column data. The SQL Window will now navigate to the offending cell in the result set after an insert or update with a column-specific error. The rowid column is now omitted when exporting a result set grid in SQL format. Test Window Enhancements You can now define Standard Tests for a specific function or procedure: A Standard Test can be invoked from the popup menu when right-clicking on the function or procedure in the Object Browser or in a PL/SQL source: The Test Window now supports Oracle12c implicit results, which are automatically detected and added to the variable list: A new Oracle / Output preference has been added to save dbms_output to a file. The filename can include %dbname%, %dbuser% and %date% variables to separate output files based on the database, user and date. Program Window Enhancements You can now suppress a hint or warning for a specific line of code by adding a "-- Ignore" comment. The Code Contents pane now shows local subprograms within a procedure/function in a separate folder. Session Window Enhancements The Session Window now has a Single Record View for the session details: You can now kill a session with the "immediate" option. Connection Enhancements A "Set current schema" item has been added to the connection popup menu. It will set the current schema for all windows of this connection. The current schema will be displayed in square brackets in the Connection List: Connecting through a proxy user is now supported. Other Enhancements A Compare function has been added to the Object Browser. You can compare program units, tables, views, sequences with sources in the database, in a file or in a window. A new Oracle / Options preference "Always include owner prefix" has been added. When enabled, DLL extracted from the database will always include the owner prefix. When disabled, the owner will be omitted if you are connected as the owner. A new "Stop" item has been added to the DBMS Scheduler "Running job" popup menu. Support has been added for Oracle12c read privileges for tables and views. Scripts generated by Export User Objects and Export Tables now have user-defined initialization and finalization. These files are located in the %APPDATA%\PLSQL Developer 12\Scripts directory. The Text Importer and ODBC Importer can now also truncate a table before import, in addition to the "Delete" option. The truncate option is faster but cannot be rolled back. The Compile Invalid Objects tool now has a User Selector. PL/SQL Developer 12 now comes as a new MSI installer for interactive and silent installation.
如何解决“Offending key in ~/.ssh/known_hosts” file
背着空空的行壤,一路走来,收拾着点点滴滴...
03-15 566
[code="java"] @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ ...
【开发工具的那些故事】Offending ECDSA key in ../.ssh/known_hosts:1ECDSA host key for ip has changed and you ha
Yangy的博客
09-06 1378
热门系列: 【开发工具的那些故事】git常用命令,手把手教你配置多个git账号 【开发工具的那些故事】git问题记录(一): Failed to connect to github.com port 443: Timed out 【开发工具的那些故事】git问题记录(二):Changes not staged for commit 【开发工具的那些故事】git问题记录(三):error: The last gc run reported the following. Pl
linux SSH登录问题
wenshuifuping的专栏
09-27 262
1、sudo ssh 远程IP @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! Someon...
ECDSA host keyip地址“ for has changed and you have requested strict checking错误
u014644574的博客
06-24 7197
错误ECDSA host key "ip地址" for has changed and you have requested strict checking.记录下方便记忆。 解决方案:在终端上输入以下命令: ssh-keygen -R "你的远程服务器ip地址" 目的是清除你当前机器里关于你的远程服务器的缓存和公钥信息,注意是大写的字母“R”。 原因分析:根据个人的情况,原因是我的云服务器重装了系统(清除了与我本地SSH连接协议相关信息),本地的SSH协议信息便失效了。SSH连接相同的ip地址.
Offending key for IP in /root/.ssh/known_hosts:1 Matching host key in /root/.ssh/known_hosts:6
破晓的成长之路
08-20 3726
在使用ssh配置免密时碰到的问题。 记得之前在配置免密时也遇到另一个问题:RSA host key for chdp03 has changed and you have requested strict checking. 问题描述: 已在chdp01配置了到chdp02,chdp03的免密。目前要在chdp02上配置到chdp01、chdp02(相关任务启动需要)、chdp03的免密,在chd...
ECDSA host key for ... has changed and you have requested strict checking.Host key verification fail
热门推荐
weixin_46935110的博客
07-20 1万+
ECDSA host key for ... has changed and you have requested strict checking.Host key verification fail
【linux报错解决】ECDSA host key for X.X.X.X has changed and you have requested strict checking
qq_38120778的博客
04-15 6110
【linux报错解决】ECDSA host key for X.X.X.X has changed and you have requested strict checking 当linux重新装机后,其他linux机器ssh访问该服务器时会产生报错,报错信息如下:ECDSA host key for X.X.X.X has changed and you have requested strict checking。 1.需要执行如下操作更新密钥即可(X.X.X.X为IP地址): ssh-keygen -
SSH建立免密通道以及清除原有SSH密钥方法
最新发布
zhiyoujiu的博客
09-12 3744
一口气快速建立ssh免密通道;清除原有的ssh密钥信息;远程ssh登录报错解决方法
AWS亚马逊ssh登录失败 Permissions 0644 for .pem are too open
01-07
AWS亚马逊ssh登录失败 Permissions 0644 for .pem are too open ssh -i yourPath/yourPrivateKey.pem ec2-user@yourAwsAddress.compute.amazonaws.com Warning: Permanently added 'yourAwsAddress.compute.amazon...
Ansible报错解决方法...added 'IP' (ECDSA) to the list of known hosts
01-12
Ansible报错解决方法Permanently added 'IP' (ECDSA) to the list of known hosts
ecdsa.zip_ECDSA_ecdsa C语言
07-13
ecdsa修改后源码,直接调用接口即可用,编程语言为C语言。
ECDSA算法实现源码.rar_ECDSA_ECDSA 算法_Openssl ECDSA_ecdsa openssl
09-19
ecdsa 算法实现 通过openssl 实现
ECDSA.rar_ECDSA_ECDSA 编程实现_ecdsa算法_认证
09-14
用VC++语言编程实现用于产生和认证方法的ECDSA签名算法。
SSH登录服务器报ECDSA host key "ip地址" for has changed and you have requested strict checking
半僧
08-27 5168
Linux SSH命令用了那么久,第一次遇到这样的错误ECDSA host keyip地址” for has changed and you have requested strict checking.记录下方便记忆。 解决方案: 在终端上输入以下命令:ssh-keygen -R &quot;你的远程服务器ip地址&quot; 目的是:清除你当前机器里关于你的远程服务器的缓存和公钥信息,注意是大写...
学习记录403@Git:The ECDSA host key for *** has changed, and the key for the corresponding IP address ***
教练我想学编程
04-14 388
git clone 时报错 解决办法:删除.ssh 文件夹下的known_hosts 原因:ssh会把你每个你访问过计算机的公钥(public key)都记录在~/.ssh/known_hosts。当下次访问相同计算机时,会核对公钥。如果公钥不同,ssh会发出警告,避免你受到DNS Hijack之类的攻击。因此我们现在只需要删除knows_hosts文件中所对应的公钥即可 ...
ssh连接出现Offending ECDSA key错误
WihauShe's Blogger
12-25 4343
(个人经验,仅供参考,错误之处,敬请谅解) 问题 个人在用mac连接云服务器时,出现了如下错误Offending ECDSA key in /Users/wihau/.ssh/known_hosts:2 ECDSA host key for 12 方法 其实原因个人理解在于之前用mac连接云服务器设置了一个key值进行验证,当服务器重装系统或者ssh变更之后,原有的验证值失效,所以通常的解决方法就...
Git:The ECDSA host key for *** has changed, and the key for the corresponding IP address ***
catch and share
03-25 5411
clone远端代码时报错:The ECDSA host key for ***has changed, and the key for the corresponding IP address *** 原因是:由于之前从远端clone过代码,所以本地known_hosts会有相应缓存信息,即ssh会默认保存该ip的连接协议信息。如果再次访问时,ssh会自动匹配之前保存的信息。无论是远端ss...
Could not load host key: /etc/ssh/ssh_host_ecdsa_key
03-28
As an AI language model, I don't have access to your server or computer's configuration files. However, in general, this error message indicates that the ssh daemon (sshd) is unable to load the host key for the ECDSA algorithm. This could be due to the key file being missing or inaccessible, or the file permissions not being set correctly. To resolve this issue, you can try the following steps: 1. Check if the key file exists at the specified location (/etc/ssh/ssh_host_ecdsa_key). If it does not exist, you can generate a new key file using the ssh-keygen command: ``` sudo ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key ``` 2. Ensure that the file permissions for the key file are set correctly. The file should be owned by the root user and have read-only permissions for the owner: ``` sudo chown root:root /etc/ssh/ssh_host_ecdsa_key sudo chmod 400 /etc/ssh/ssh_host_ecdsa_key ``` 3. Restart the sshd service to apply the changes: ``` sudo service sshd restart ``` If the issue persists, you may need to check the sshd configuration file (/etc/ssh/sshd_config) to ensure that the correct key file path is specified for the ECDSAHostKey directive.

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值