faq_hostkey » Revisions »
Differences
This shows you the differences between the selected revisions of the page.
| 2016-08-10 | 2016-08-10 | ||
| no summary (182.65.230.21) (hidden) | no summary (182.65.230.21) (hidden) | ||
| Line 3: | Line 3: | ||
| - | ===== Safely obtaining host key ===== | ||
| - | In the real world, most administrators do not provide the host key fingerprint. | ||
| - | |||
| - | Instead you can ask anyone else with a physical access to the server. The host key is only one and hence the same for all users. Also note that the host key fingerprint is generated from a public key part of the host key only. So it is not secret and can be safely sent over an unencrypted (yet trusted) communication channels. | ||
| - | |||
| - | If you do not have anyone else to obtain the fingerprint from, you may need to connect to the server without knowing the fingerprint. Before connecting for the first time, ensure a security of your local machine and a line to the server. For example if you plan to connect to the server from an external site (e.g. from home or a client), but you have a physical access to the server site, connect from the server site the first time (e.g. your workplace). | ||
| - | |||
| - | Once you connect, WinSCP caches the fingerprint and will ensure, that the key is unchanged every time you connect later on. | ||
| - | |||
| - | If you need to know the fingerprint later on for other purposes, like to verify the host key on another machine, or for automation, go to a //[[ui_fsinfo|Server and Protocol Information Dialog]]//. See a //Server Host key Fingerprint// box. | ||
| ===== Obtaining host key from PuTTY ===== | ===== Obtaining host key from PuTTY ===== | ||