Differences

This shows you the differences between the selected revisions of the page.

2014-06-13 2014-06-13
moving from ssh#verifying_the_host_key (martin) screenshot (martin)
Line 2: Line 2:
If you are using WinSCP to connect to a server for the first time, you will probably see a message looking something like this: If you are using WinSCP to connect to a server for the first time, you will probably see a message looking something like this:
-··The server's host key was not found in the cache. You have no guarantee that the +&screenshotpict(unknown_hostkey)
-··server is the computer you think it is.  +
-  The server's rsa2 key fingerprint is:  +
-  ssh-rsa 2048 94:3c:9e:2b:23:df:bd:53:b4:ad:f1:5f:4e:2f:9d:ba+
This is a feature of the SSH protocol. It is designed to protect you against a network attack known as spoofing: secretly redirecting your connection to a different computer, so that you send your password to the wrong machine. Using this technique, an attacker would be able to learn the password that guards your login account, and could then log in as if they were you and use the account for their own purposes. This is a feature of the SSH protocol. It is designed to protect you against a network attack known as spoofing: secretly redirecting your connection to a different computer, so that you send your password to the wrong machine. Using this technique, an attacker would be able to learn the password that guards your login account, and could then log in as if they were you and use the account for their own purposes.

Last modified: by martin