Mac OS X Remove SSH Known Host

last updated December 15, 2009 in BASH Shell, Mac OS X

I‘ve reinstalled Linux on remote server and now trying to connect it over ssh using Mac OS X:
ssh user@server1.example.com

But I’m getting an error which read as follows:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
5c:9b:16:56:a6:cd:11:10:3a:cd:1b:a2:91:cd:e5:1c.
Please contact your system administrator.
Add correct host key in /Users/user/.ssh/known_hosts to get rid of this message.
Offending key in /Users/user/.ssh/known_hosts:1
RSA host key for server1.example.com has changed and you have requested strict checking.
Host key verification failed.

How do I fix this problem under Mac OX X?

You need to run the following command to get rid of this problem. Open the terminal and type the following command:

ssh-keygen -R server-name
ssh-keygen -R server.ip.addre.ss
ssh-keygen -R 202.54.1.5
ssh-keygen -R server1.example.com

Fig.01: Removing /Users/user/.ssh/known_hosts file

Now you can connect to remote host with ssh:

ssh user@server1.example.com

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin, DevOps engineer, and a trainer for the Linux operating system/Unix shell scripting. Get the latest tutorials on SysAdmin, Linux/Unix and open source topics via RSS/XML feed or weekly email newsletter.

12 comment

Bike Jerry says:
December 30, 2012 at 4:45 pm
This helped me out as well – thank you, happy new year!
Craig says:
May 28, 2013 at 8:26 am
Didn’t work for me, showed exactly what you said it would but when I try to SSH in it continues to show the original message… :-(
Ian says:
July 21, 2013 at 11:29 am
Thanks for this. Had two ftp sites that Coda refused to connect to, but Cyberduck was happy with.
Hugo says:
August 28, 2014 at 3:44 am
Worked great! Thank you!!
Cyril says:
September 12, 2014 at 9:36 pm
I was having the same problem as I was setting up a lots of routers with the same IP over ssh. What worked for me was to remove known_hosts file which is stored in ~/.ssh/knonw_host. So what I did was updating my /etc/bashrc file with the following lines:
rmknownhosts()
{
rm ~/.ssh/known_hosts
}
Than when this message appeared I simply typed rmknownhosts and delete the file.
I don`t know if this is right step to deal with that. But it definitely worked for me.
Hope that helps.
Lou says:
September 14, 2014 at 6:01 am
Worked for me… I just needed to clear the 1 entry of “[myserver].com”
ssh-keygen -R [myserver].com
Bogdan says:
November 20, 2014 at 10:24 am
Great, exactly what I needed quick and simple. Thank you!
James says:
May 27, 2015 at 3:58 pm
Unfortunately I don’t think this command actually did anything.
Jan says:
July 17, 2015 at 4:28 pm
Thanks!
Sai says:
August 20, 2015 at 5:50 pm
It worked by using the following commands:
cd /Users/Username/.ssh/Known_hosts
ssh-keygen -R domain-name
ssh-keygen -R server
Thanks
Sue says:
May 16, 2016 at 11:22 pm
You saved me today. Thanks, it worked for me under a complicated situation. Thanks.

Have a question? Post it on our forum!

Tagged as: 3a, addre, fingerprint, host identification, host key, hosts, Linux, Mac OS X, man in the middle attack, ox, remote server, rsa key, server ip, server name, server1, system administrator