Solaris Login Server SSH Keys Change - May 19, 2006

Solaris Login Server SSH Keys Change - May 19, 2006

The upgrade of the Solaris login servers (login.cs.duke.edu) was completed yesterday, but due to incompatibilities between the old and new ssh packages, the SSH keys needed to be changed. Users with tunneled connections to the department through the login servers may get notices about incorrect keys; please delete your old keys and let your ssh programs acquire the new login keys.

An example of the incorrect key message is shown below:

	@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
	@       WARNING: POSSIBLE DNS SPOOFING DETECTED!          @
	@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
	The RSA host key for login.cs.duke.edu has changed,
	and the key for the according IP address 152.3.140.24
	is unknown. This could either mean that
	DNS SPOOFING is happening or the IP address for the host
	and its host key have changed at the same time.
	@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
	@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
	@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
	IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
	Someone could be eavesdropping on you right now (man-in-the-middle
	attack)!

Please contact the Lab Staff if you have any questions or problems.