Re: The authenticity of pkgs.fedoraproject.org

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Wed, Jan 06, 2021 at 03:19:13AM -0700, Brad Bell wrote:
> I just got the following result for a package push:
> 
> cppad>fedpkg push
> The authenticity of host 'pkgs.fedoraproject.org (38.145.60.17)' can't be established.
> RSA key fingerprint is SHA256:Q12OTyTeOHWlS54dTzy2BNu7wB8UKNf18+7WHIDsORc.
> Are you sure you want to continue connecting (yes/no/[fingerprint])?
> 
> Did something change recently ?

No, nothing has changed recently on the server. 
Perhaps your ~/.ssh/known_hosts changed/was deleted?

If you add the contents of: 
https://admin.fedoraproject.org/ssh_known_hosts
to your ~/.ssh/known_hosts it will verify it based on our CA. 

If you enable 'VerifyHostKeyDNS' ssh option (in ~/.ssh/config or
/etc/ssh/ssh_config) it will verify the host key based on the SSHFP dns
record (and if you use this you likely want to use dnssec too). 

kevin

Attachment: signature.asc
Description: PGP signature

_______________________________________________
packaging mailing list -- packaging@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to packaging-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/packaging@xxxxxxxxxxxxxxxxxxxxxxx

[Index of Archives]     [Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite Forum]     [KDE Users]

  Powered by Linux