[cs615asa] HW1(Message: bochs: cannot connect to X server)

Rob Richard rrichar1 at stevens.edu
Thu Feb 19 00:41:32 EST 2009 

The other option is to add the contents of this file to your 
~/.ssh/known_hosts. This file was provided by the help desk.

...or I could be DNS spoofing all of the hosts in the lab and these are 
the keys to machines doing the spoofing...



Joe Letizia wrote:
> You should only do that for systems you dont care about/ will not do 
> anything private on.
>
> A DNS spoofing/MITM attack is no joke.
>
> I'm a security nut so I would never use that...but for normal people I'm 
> sure its okay.
>
> Lets just say you've been warned.
>
> Rob Richard wrote:
>   
>> An easy way around the ssh host key warnings is to use the 
>> StrictHostKeyChecking option (assuming you are using OpenSSH)
>>
>> for example:
>>
>> ssh -o StrictHostKeyChecking=no linux-lab.cs.stevens.edu
>>
>> -Rob
>>
>> Joe Letizia wrote:
>>     
>>> The DNS spoofing is not your fault. It is the linux lab admin's.
>>>
>>> Try running xclock. that will tell you whether or not youve got 
>>> xforawarding going.
>>>
>>> If you're not using putty + xming, i suggest you do so...unless of 
>>> course youre already using a *nix system.
>>>
>>> Google it, its out there.
>>>
>>> Shashwath Veerappa Devaru wrote:
>>>   
>>>       
>>>> Professor now am facing another problem as seen below when i try to 
>>>> ssh with X forwarding
>>>>
>>>> sveerapp at mechagodzilla:~$ ssh -X linux-lab.cs.stevens-tech.edu 
>>>> <http://linux-lab.cs.stevens-tech.edu>
>>>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
>>>> @       WARNING: POSSIBLE DNS SPOOFING DETECTED!          @
>>>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
>>>> The RSA host key for linux-lab.cs.stevens-tech.edu 
>>>> <http://linux-lab.cs.stevens-tech.edu> has changed,
>>>> and the key for the according IP address 155.246.89.34
>>>> is unknown. This could either mean that
>>>> DNS SPOOFING is happening or the IP address for the host
>>>> and its host key have changed at the same time.
>>>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
>>>> @    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
>>>> @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
>>>> IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
>>>> Someone could be eavesdropping on you right now (man-in-the-middle 
>>>> attack)!
>>>> It is also possible that the RSA host key has just been changed.
>>>> The fingerprint for the RSA key sent by the remote host is
>>>> 18:14:af:55:11:6e:af:3c:a2:b8:6d:cd:30:6e:85:3a.
>>>> Please contact your system administrator.
>>>> Add correct host key in /home/sveerapp/.ssh/known_hosts to get rid of 
>>>> this message.
>>>> Offending key in /home/sveerapp/.ssh/known_hosts:5
>>>> RSA host key for linux-lab.cs.stevens-tech.edu 
>>>> <http://linux-lab.cs.stevens-tech.edu> has changed and you have 
>>>> requested strict checking.
>>>> Host key verification failed.
>>>>
>>>>
>>>> I tried on separate hosts but with no luck. Using -Y option also gives 
>>>> the same message as above. No am not able to run xterm either, while i 
>>>> try to run I get the following error
>>>>
>>>> sveerapp at neo:~$ xterm
>>>> xterm Xt error: Can't open display:
>>>> xterm:  DISPLAY is not set
>>>>
>>>> Kindly Help.
>>>>
>>>> Thank you,
>>>> Shashwath
>>>>
>>>> On Wed, Feb 18, 2009 at 10:44 PM, Jan Schaumann 
>>>> <jschauma at cs.stevens.edu <mailto:jschauma at cs.stevens.edu>> wrote:
>>>>
>>>>     Shashwath Veerappa Devaru <sveerapp at stevens.edu
>>>>     <mailto:sveerapp at stevens.edu>> wrote:
>>>>
>>>>
>>>>     > I did ssh to linux-lab.cs.stevens-tech.edu
>>>>     <http://linux-lab.cs.stevens-tech.edu> with X forwarding enabled using
>>>>     > the command "ssh -X linux-lab.cs.stevens-tech.edu
>>>>     <http://linux-lab.cs.stevens-tech.edu> " .
>>>>
>>>>     That ought to work.  Is this only happening on a specific host or
>>>>     on all
>>>>     hosts that linux-lab.cs.stevens-tech.edu
>>>>     <http://linux-lab.cs.stevens-tech.edu> maps do?
>>>>
>>>>     Can you run other applications, such as xterm?
>>>>
>>>>     Have you tried using '-Y' instead of '-X'?
>>>>
>>>>     -Jan
>>>>
>>>>     _______________________________________________
>>>>     Cs615asa mailing list
>>>>     Cs615asa at lists.stevens.edu <mailto:Cs615asa at lists.stevens.edu>
>>>>     https://lists.stevens.edu/cgi-bin/mailman/listinfo/cs615asa
>>>>
>>>>
>>>> ------------------------------------------------------------------------
>>>>
>>>> _______________________________________________
>>>> Cs615asa mailing list
>>>> Cs615asa at lists.stevens.edu
>>>> https://lists.stevens.edu/cgi-bin/mailman/listinfo/cs615asa
>>>>   
>>>>     
>>>>         
>>> _______________________________________________
>>> Cs615asa mailing list
>>> Cs615asa at lists.stevens.edu
>>> https://lists.stevens.edu/cgi-bin/mailman/listinfo/cs615asa
>>>   
>>>       
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> Cs615asa mailing list
>> Cs615asa at lists.stevens.edu
>> https://lists.stevens.edu/cgi-bin/mailman/listinfo/cs615asa
>>   
>>     
>
> _______________________________________________
> Cs615asa mailing list
> Cs615asa at lists.stevens.edu
> https://lists.stevens.edu/cgi-bin/mailman/listinfo/cs615asa
>   

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: known_hosts.final
Url: https://lists.stevens.edu/cgi-bin/mailman/private/cs615asa/attachments/20090219/dd9f8f83/attachment-0001.txt

More information about the Cs615asa mailing list