Mac OS X Remove SSH Known Host

last updated December 15, 2009 in BASH Shell, Mac OS X

I‘ve reinstalled Linux on remote server and now trying to connect it over ssh using Mac OS X:
ssh user@server1.example.com

But I’m getting an error which read as follows:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
5c:9b:16:56:a6:cd:11:10:3a:cd:1b:a2:91:cd:e5:1c.
Please contact your system administrator.
Add correct host key in /Users/user/.ssh/known_hosts to get rid of this message.
Offending key in /Users/user/.ssh/known_hosts:1
RSA host key for server1.example.com has changed and you have requested strict checking.
Host key verification failed.

How do I fix this problem under Mac OX X?

You need to run the following command to get rid of this problem. Open the terminal and type the following command:

ssh-keygen -R server-name
ssh-keygen -R server.ip.addre.ss
ssh-keygen -R 202.54.1.5
ssh-keygen -R server1.example.com

Fig.01: Removing /Users/user/.ssh/known_hosts file

Now you can connect to remote host with ssh:

ssh user@server1.example.com

Official Linux Foundation Certifications and Training - 15% Off

Get 15% off on Linux Foundation certified SysAdmin, Progamming, Kubernetes/Containers and Open Stack certification & course. Use "SPLASH15" coupon code. Offer expires on August 27, 2018
training.linuxfoundation.org

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin, DevOps engineer, and a trainer for the Linux operating system/Unix shell scripting. Get the latest tutorials on SysAdmin, Linux/Unix and open source topics via RSS/XML feed or weekly email newsletter.

Your support makes a big difference:

I have a small favor to ask. More people are reading the nixCraft. Many of you block advertising which is your right, and advertising revenues are not sufficient to cover my operating costs. So you can see why I need to ask for your help. The nixCraft takes a lot of my time and hard work to produce. If everyone who reads nixCraft, who likes it, helps fund it, my future would be more secure. You can donate as little as $1 to support nixCraft:

Become a Supporter Make a contribution via Paypal/Bitcoin

12 comment

Bike Jerry says:
December 30, 2012 at 4:45 pm
This helped me out as well – thank you, happy new year!
Craig says:
May 28, 2013 at 8:26 am
Didn’t work for me, showed exactly what you said it would but when I try to SSH in it continues to show the original message… :-(
Ian says:
July 21, 2013 at 11:29 am
Thanks for this. Had two ftp sites that Coda refused to connect to, but Cyberduck was happy with.
Hugo says:
August 28, 2014 at 3:44 am
Worked great! Thank you!!
Cyril says:
September 12, 2014 at 9:36 pm
I was having the same problem as I was setting up a lots of routers with the same IP over ssh. What worked for me was to remove known_hosts file which is stored in ~/.ssh/knonw_host. So what I did was updating my /etc/bashrc file with the following lines:
rmknownhosts()
{
rm ~/.ssh/known_hosts
}
Than when this message appeared I simply typed rmknownhosts and delete the file.
I don`t know if this is right step to deal with that. But it definitely worked for me.
Hope that helps.
Lou says:
September 14, 2014 at 6:01 am
Worked for me… I just needed to clear the 1 entry of “[myserver].com”
ssh-keygen -R [myserver].com
Bogdan says:
November 20, 2014 at 10:24 am
Great, exactly what I needed quick and simple. Thank you!
James says:
May 27, 2015 at 3:58 pm
Unfortunately I don’t think this command actually did anything.
Jan says:
July 17, 2015 at 4:28 pm
Thanks!
Sai says:
August 20, 2015 at 5:50 pm
It worked by using the following commands:
cd /Users/Username/.ssh/Known_hosts
ssh-keygen -R domain-name
ssh-keygen -R server
Thanks
Sue says:
May 16, 2016 at 11:22 pm
You saved me today. Thanks, it worked for me under a complicated situation. Thanks.

Have a question? Post it on our forum!

Tagged as: 3a, addre, fingerprint, host identification, host key, hosts, Linux, Mac OS X, man in the middle attack, ox, remote server, rsa key, server ip, server name, server1, system administrator