什么是 RSA 主机密钥? [英] What is an RSA host key?

问题描述

我收到这条消息说:

将 IP 地址192.30.252.130"的 RSA 主机密钥永久添加到已知主机列表中

Permanently added the RSA host key for IP address '192.30.252.130' to the list of known hosts

RSA 密钥的含义是什么，已知主机背后的概念是什么?

What is the meaning of the RSA key and what is the concept behind known hosts?

推荐答案

RSA 密钥是基于 RSA 算法的私钥.私钥用于在建立 SSL/TLS 会话期间进行身份验证和对称密钥交换.

The RSA key is a private key based on the RSA algorithm. The private key is used for authentication and a symmetric key exchange during establishment of an SSL/TLS session.

所以这只是意味着主机192.30.252.130"现在是受信任的主机(已知主机之一)，您现在可以与该主机建立安全连接.这可以在多种情况下使用，例如使用它们通过 OpenSSH 或其他安全外壳登录您的计算机.

So this simply means that the host '192.30.252.130' is now a trusted host (one of known hosts) and you can now have a secured connection with this host. This could be used in multiple cases, like using them for logging into your computer(s) via OpenSSH or other secured shell.

一旦您连接到主机并将主机密钥保存到 known_hosts 文件中，您的客户端就会使用该密钥来验证所有后续连接.服务器上也有相同的主机密钥信息，万一主机密钥发生变化，您的客户端会闻到一些腥味(可能是 中间人攻击)并采取相应行动.

Once you connect to a host and the host key is saved to the known_hosts file, your client uses the key to verify all subsequent connections. The same host key information is on the server as well, in case the host key changes, your client would smell something fishy (maybe a man-in-the-middle attack) and act accordingly.

有关 RSA 算法和过程的详细信息，请参阅维基百科.

Refer to Wikipedia for details of the RSA algorithm and the process.

另参考一个类似的问题Unix 和 Linux.

Also refer to a similar question on Unix and Linux.

这篇关于什么是 RSA 主机密钥?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！