Ping a Specific Port

Question

Emanuil Rusev

Asked: 2015-02-22 06:26:20 +0800 CST2015-02-22 06:26:20 +0800 CST 2015-02-22 06:26:20 +0800 CST

The authenticity of the server when accessing it through a domain name instead of an IP

772

When I do ssh [email protected], I log into the server fine. However, if I do ssh [email protected], where example.com points to the same IP addrees, I get:

The authenticity of host 'example.com (123.123.123.12)' can't be established.

If it is the same IP, why can't the authenticity be established?

1 Answers

Voted

Cedric Knight · Answer 1 · 2015-02-22T13:38:57+08:00

Best Answer

Cedric Knight

2015-02-22T13:38:57+08:002015-02-22T13:38:57+08:00

It's by design. When you accept a SSH fingerprint, you're basically associating that fingerprint with the hostname, whether example.com, www.example.com or 123.123.123.12. So the next time, once it's been added to your known_hosts, you know you are safely doing what you have said you are, eg ssh user@example.com.

Suppose example.com changes A record, then that fingerprint from example.com will still work; that's not the case if fingerprints were solely associated with IP addresses. Yes, it's the same SSH fingerprint, used to authenticate the same server with the same key, but the semantics of what you are doing is different.

3

The authenticity of the server when accessing it through a domain name instead of an IP

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?