Concerns about SSH host key Fingerprint

Advertisement

Sachin
Joined:
Posts:
9
Location:
Mumbai

Concerns about SSH host key Fingerprint

Hi All,

I am using .NET library for SFTP.WinScp Version is 5.1.7.As per demo code to start SFTP session you need SshHostKeyFingerprint.I have some concrens regarding this parameters

1>I am going to use Winscp on Intranet.Can I start session without giving this key(Winscp version 5.1.7)
2>As I googled, this fingerprint is unique server.It may chnage in below scenarios

    i>M/c is changes
    ii>If server admin changed it intentionally(Can he do so I am not sure)
    iii>IP address of server got changed (I have confusion regarding this point)

Can anyone tell me any other scenarios in which SshHostKeyFingerprint gets changed.Also confirm on my point 2(ii,iii).

Reply with quote

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
27,253
Location:
Prague, Czechia

Re: Concerns about SSH host key Fingerprint

Sachin wrote:

1>I am going to use Winscp on Intranet.Can I start session without giving this key(Winscp version 5.1.7)
Not in 5.1.7. You can un 5.2.x

2>As I googled, this fingerprint is unique server.It may chnage in below scenarios
i>M/c is changes
Do not know what M/c is.

ii>If server admin changed it intentionally(Can he do so I am not sure)
Yes, admin can do anything.

iii>IP address of server got changed (I have confusion regarding this point)
IP change does not have host key. But it can invalidate hostkey cache on client side. Though WinSCP .NET assembly does not have a cache.
_________________
Martin Prikryl

Reply with quote

Sachin
Joined:
Posts:
9
Location:
Mumbai

Re: Concerns about SSH host key Fingerprint

Thanks Martin,

In point 2(i),I was referring to Server m/c

Also,is there any other case in which SSH host key Fingerprint gets changed.It would be very helpful to me.

Reply with quote

martin
Site Admin
martin avatar
Joined:
Posts:
27,253
Location:
Prague, Czechia

Re: Concerns about SSH host key Fingerprint

Sachin wrote:

In point 2(i),I was referring to Server m/c
Again, I do not know what m/c is.

Also,is there any other case in which SSH host key Fingerprint gets changed.It would be very helpful to me.
Not aware of any. It should not change at all in general. Note that while admin can change it, he/she should not do this.
_________________
Martin Prikryl

Reply with quote

Advertisement

You can post new topics in this forum