@amarand @elric @AI78 well, the first time I connect to a new host I normally see s/t like "This is a new host--they key fingerprint is ::blah::. Do you want to add it to your list of known hosts?" If it's calling this a *change* then that means its finding something in known_hosts for the IP, doesn't it?

@amarand @elric @AI78 so probably YOU HAVE MISCONFIGURED YOUR SERVERS YOU NUMBSKULLS is not my best move...

@amarand @elric @AI78 gonna have to be extra diplomatic here. These folks have no reason to love me, and I can't visit their desks to bat my eyes &/or ply them with chocolates...

@amarand @elric @AI78 huh--just tried & for the first time I got the WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!

So I'm guessing it's a single IP address w/2 physical hosts?

@amarand @elric @AI78 rep is (I think) not a native English speaker, so I'm not sure if they're trying to say they have to update their hosts, or what.

@amarand @elric @AI78

Response from representative was:

"We have two hosts behind ::hostname::. The key needs to be updated in both hosts."

Can we just create multiple entries in known_hosts for the same host w/different keys?

@amarand hostname. Do you think switching to IP would be a solution?

@gshevlin 1000%

I could not believe what I was seeing...

@elric @AI78 fwiw, I can find the md5 I get on my copy of ssh.exe out on the internet, so... probably legit?

https://strontic.github.io/xcyclopedia/library/ssh.exe-C05426E6F6DFB30FB78FBA874A2FF7DC.html

@amarand heh--I'm happy to have intrigued all you smarties. I will report this to the sysadmins & see what they have to say.

@elric @AI78 DON'T YOU PUT THAT EVIL ON ME RICKY BOBBY

😂

We're using windows' native(?) openssh install, in that holiest-of-the-holies \system32 dir, so I sure hope those haven't been tampered with...

@amarand seems like it's changing once/day, but it's a new system for us & so we're not routinely connecting to it yet.

'local' here means corporate IT, inside the overarching organizational firewall* but not in the same state as me. I don't think there are proxies between me & this host, but don't really know.

Host is some flavor of linux. I only begrudgingly got shell access--definitely no root.

*I assume there is such a thing

@AI78 @elric the weird thing is that it's happening for my coworkers, but not (so far) for me.

If it does I'm going to track the different keys & see if it's really a new one every time or if it's some small number getting round-robin'ed or something

@AI78 yeah, I was thinking it might be something like that.

IT peeps--if I'm ssh'ing into an internal host, which is new to me but trusted, and its key keeps changing, forcing me to remove the last entry from my known_hosts file & accept a new one, that's a bug in the server's config, right?

somehow slept through my alarm this morning. I think that's the first time I've done that. Woke up refreshed and not late for work or anything, but I did miss my workout.

Eh, I'll live.

Taste the freedom