2169 – command to remove outdated hostkey from known_hosts file wrong

Bug 2169 - command to remove outdated hostkey from known_hosts file wrong

Summary: command to remove outdated hostkey from known_hosts file wrong

Status:	CLOSED INVALID

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	ssh (show other bugs)
Version:	6.2p1
Hardware:	Other Linux

Importance:	P5 minor
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2013-11-11 21:52 AEDT by BjÃ¶rn Jacke
Modified:	2016-10-22 01:45 AEDT (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description BjÃ¶rn Jacke 2013-11-11 21:52:53 AEDT

when a host with a non-default port is in the known_hosts file then the suggested command to remove it does not work:

in known_hosts:

[192.168.42.129]:2222 ssh-rsa ....


connecting with an outdated hostkey gives:

Offending ECDSA key in /home/user/.ssh/known_hosts:440
You can use following command to remove all keys for this IP:
ssh-keygen -R 192.168.42.129 -f /home/user/.ssh/known_hosts

That command does only work for this known_hosts entry. It only works via:

keygen -R [192.168.42.129]:2222 -f /home/user/.ssh/known_hosts

Comment 1 BjÃ¶rn Jacke 2013-11-12 01:47:25 AEDT

"That command does only work for this known_hosts entry"

should read:

"That command does NOT work for this known_hosts entry"

Comment 2 Damien Miller 2013-12-19 11:09:29 AEDT

That text has been added by a downstream distributor of OpenSSH, probably your OS distribution. It isn't in the version that we release.

Comment 3 Damien Miller 2015-08-11 23:04:50 AEST

Set all RESOLVED bugs to CLOSED with release of OpenSSH 7.1

Comment 4 Adam Spiers 2016-10-22 01:45:46 AEDT

For future reference, this bug affects SUSE distributions, and I have submitted a downstream bug here:

https://bugzilla.suse.com/show_bug.cgi?id=1006221