| 3 | When you try to [wiki:secure_shell secure shell] (ssh) or [wiki:sftp secure FTP] to our servers, you may get a message along the lines of: |
| 4 | |
| 5 | {{{ |
| 6 | @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ |
| 7 | @ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @ |
| 8 | @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ |
| 9 | IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY! |
| 10 | Someone could be eavesdropping on you right now (man-in-the-middle attack)! |
| 11 | It is also possible that the RSA host key has just been changed. |
| 12 | }}} |
| 13 | |
| 14 | The reason you may be getting this message is because May First/People Link has changed the "host keys" for most of our servers due to a [http://wiki.debian.org/SSLkeys security problem] discovered in the program used to generate the keys. |
| 15 | |
| 16 | The "host keys" are random bits of text that are unique to every server. The randomness of the keys allows us to have a secure, encrypted connection between you and the server. |