Equivalent of “ssh-keyscan -H” in Solaris 10/11

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP











up vote
1
down vote

favorite












I'm creating a Perl program that adds the specified host in root's known_hosts file. The program works in AIX and Linux, but not in Solaris and sadly, I can't find its equivalent command.



Sample line:



system("ssh-keyscan -H www.myserver.domain >> /.ssh/known_hosts");


Output:




ssh-keyscan: illegal option -- H
Usage: ssh-keyscan [-v46] [-p port] [-T timeout] [-f file]
[host | addrlist namelist] [...]




Update 1:



I tried the following command but it still asks for authenticity:



system("ssh-keyscan -t rsa www.myserver.domain >> /.ssh/known_hosts");


Update 2:
Output outside Perl:



# ssh-keyscan -t rsa www.myserver.domain >> /.ssh/test123.text 
# www.myserver.domain SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 
# less test123.text
# www.myserver.domain ssh-rsa KEY 
# ssh www.myserver.domain
# The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?





perl solaris







share|improve this question























  • What's the version of ssh-keyscan you're using on Solaris?
    – slm♦
    Aug 15 at 2:12










  • How do I find out the version of ssh-keyscan?
    – Shan
    Aug 15 at 2:19










  • Can't tell, doesn't appear to display a version.
    – slm♦
    Aug 15 at 2:21










  • If you are root (as appears) and your homedir is in fact the rootdir, look at /.ssh/known_hosts and make sure a line for the desired host is in there, then try ssh -v $hostname and look at the logged output.
    – dave_thompson_085
    Aug 15 at 6:23














up vote
1
down vote

favorite












I'm creating a Perl program that adds the specified host in root's known_hosts file. The program works in AIX and Linux, but not in Solaris and sadly, I can't find its equivalent command.



Sample line:



system("ssh-keyscan -H www.myserver.domain >> /.ssh/known_hosts");


Output:




ssh-keyscan: illegal option -- H
Usage: ssh-keyscan [-v46] [-p port] [-T timeout] [-f file]
[host | addrlist namelist] [...]




Update 1:



I tried the following command but it still asks for authenticity:



system("ssh-keyscan -t rsa www.myserver.domain >> /.ssh/known_hosts");


Update 2:
Output outside Perl:



# ssh-keyscan -t rsa www.myserver.domain >> /.ssh/test123.text 
# www.myserver.domain SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 
# less test123.text
# www.myserver.domain ssh-rsa KEY 
# ssh www.myserver.domain
# The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?





perl solaris







share|improve this question























  • What's the version of ssh-keyscan you're using on Solaris?
    – slm♦
    Aug 15 at 2:12










  • How do I find out the version of ssh-keyscan?
    – Shan
    Aug 15 at 2:19










  • Can't tell, doesn't appear to display a version.
    – slm♦
    Aug 15 at 2:21










  • If you are root (as appears) and your homedir is in fact the rootdir, look at /.ssh/known_hosts and make sure a line for the desired host is in there, then try ssh -v $hostname and look at the logged output.
    – dave_thompson_085
    Aug 15 at 6:23












up vote
1
down vote

favorite









up vote
1
down vote

favorite











I'm creating a Perl program that adds the specified host in root's known_hosts file. The program works in AIX and Linux, but not in Solaris and sadly, I can't find its equivalent command.



Sample line:



system("ssh-keyscan -H www.myserver.domain >> /.ssh/known_hosts");


Output:




ssh-keyscan: illegal option -- H
Usage: ssh-keyscan [-v46] [-p port] [-T timeout] [-f file]
[host | addrlist namelist] [...]




Update 1:



I tried the following command but it still asks for authenticity:



system("ssh-keyscan -t rsa www.myserver.domain >> /.ssh/known_hosts");


Update 2:
Output outside Perl:



# ssh-keyscan -t rsa www.myserver.domain >> /.ssh/test123.text 
# www.myserver.domain SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 
# less test123.text
# www.myserver.domain ssh-rsa KEY 
# ssh www.myserver.domain
# The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?





perl solaris







share|improve this question















I'm creating a Perl program that adds the specified host in root's known_hosts file. The program works in AIX and Linux, but not in Solaris and sadly, I can't find its equivalent command.



Sample line:



system("ssh-keyscan -H www.myserver.domain >> /.ssh/known_hosts");


Output:




ssh-keyscan: illegal option -- H
Usage: ssh-keyscan [-v46] [-p port] [-T timeout] [-f file]
[host | addrlist namelist] [...]




Update 1:



I tried the following command but it still asks for authenticity:



system("ssh-keyscan -t rsa www.myserver.domain >> /.ssh/known_hosts");


Update 2:
Output outside Perl:



# ssh-keyscan -t rsa www.myserver.domain >> /.ssh/test123.text 
# www.myserver.domain SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 
# less test123.text
# www.myserver.domain ssh-rsa KEY 
# ssh www.myserver.domain
# The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?





perl solaris




perl solaris






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Sep 7 at 10:05









Rui F Ribeiro

36.6k1271116




36.6k1271116










asked Aug 15 at 2:11









Shan

63




63











  • What's the version of ssh-keyscan you're using on Solaris?
    – slm♦
    Aug 15 at 2:12










  • How do I find out the version of ssh-keyscan?
    – Shan
    Aug 15 at 2:19










  • Can't tell, doesn't appear to display a version.
    – slm♦
    Aug 15 at 2:21










  • If you are root (as appears) and your homedir is in fact the rootdir, look at /.ssh/known_hosts and make sure a line for the desired host is in there, then try ssh -v $hostname and look at the logged output.
    – dave_thompson_085
    Aug 15 at 6:23
















  • What's the version of ssh-keyscan you're using on Solaris?
    – slm♦
    Aug 15 at 2:12










  • How do I find out the version of ssh-keyscan?
    – Shan
    Aug 15 at 2:19










  • Can't tell, doesn't appear to display a version.
    – slm♦
    Aug 15 at 2:21










  • If you are root (as appears) and your homedir is in fact the rootdir, look at /.ssh/known_hosts and make sure a line for the desired host is in there, then try ssh -v $hostname and look at the logged output.
    – dave_thompson_085
    Aug 15 at 6:23















What's the version of ssh-keyscan you're using on Solaris?
– slm♦
Aug 15 at 2:12




What's the version of ssh-keyscan you're using on Solaris?
– slm♦
Aug 15 at 2:12












How do I find out the version of ssh-keyscan?
– Shan
Aug 15 at 2:19




How do I find out the version of ssh-keyscan?
– Shan
Aug 15 at 2:19












Can't tell, doesn't appear to display a version.
– slm♦
Aug 15 at 2:21




Can't tell, doesn't appear to display a version.
– slm♦
Aug 15 at 2:21












If you are root (as appears) and your homedir is in fact the rootdir, look at /.ssh/known_hosts and make sure a line for the desired host is in there, then try ssh -v $hostname and look at the logged output.
– dave_thompson_085
Aug 15 at 6:23




If you are root (as appears) and your homedir is in fact the rootdir, look at /.ssh/known_hosts and make sure a line for the desired host is in there, then try ssh -v $hostname and look at the logged output.
– dave_thompson_085
Aug 15 at 6:23










1 Answer
1






active

oldest

votes

















up vote
0
down vote













Looking at the man page for ssh-keyscan on Solaris 10/11 doesn't look to support that switch.



Reference: ssh-keyscan man page

ssh-keyscan [-v46] [-p port] [-T timeout] [-t type] 
 [-f file] [-] [host... | addrlist namelist] [...]


I think you can just do ssh-keyscan <hostname> however to retrieve the keys and then write them to your ~/.ssh/known_hosts file. This will still work but just won't put all the names that the host goes by on a single line like this:



hostname1, hostname1.fqdn.com .....


So you might have some cleanup work to do on the resulting known_hosts file.



Host authenticity



If you find you're encountering this issue which amounts to a catch 22, where you cannot scan a host that's not yet present in your known_hosts file:




The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?




You can work around this issue by temporarily disabling StrictHostKeyChecking:



$ cat ~/.ssh/config
...
StrictHostKeyChecking no
...


Then do your keyscan <host> ... command again. Once you're complete, be sure to remove the StrictHostKeyChecking from your ~/.ssh/config.



References



  • ssh_config man page





share|improve this answer






















  • @Shan - what happens if you say y at that prompt?
    – slm♦
    Aug 15 at 11:42










  • host will be added to the list of known_hosts (not recommended; I need to automate this)
    – Shan
    Aug 16 at 2:08











  • @Shan - see updates.
    – slm♦
    Aug 16 at 3:17










Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: false,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f462656%2fequivalent-of-ssh-keyscan-h-in-solaris-10-11%23new-answer', 'question_page');

);

Post as a guest

















1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
0
down vote













Looking at the man page for ssh-keyscan on Solaris 10/11 doesn't look to support that switch.



Reference: ssh-keyscan man page

ssh-keyscan [-v46] [-p port] [-T timeout] [-t type] 
 [-f file] [-] [host... | addrlist namelist] [...]


I think you can just do ssh-keyscan <hostname> however to retrieve the keys and then write them to your ~/.ssh/known_hosts file. This will still work but just won't put all the names that the host goes by on a single line like this:



hostname1, hostname1.fqdn.com .....


So you might have some cleanup work to do on the resulting known_hosts file.



Host authenticity



If you find you're encountering this issue which amounts to a catch 22, where you cannot scan a host that's not yet present in your known_hosts file:




The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?




You can work around this issue by temporarily disabling StrictHostKeyChecking:



$ cat ~/.ssh/config
...
StrictHostKeyChecking no
...


Then do your keyscan <host> ... command again. Once you're complete, be sure to remove the StrictHostKeyChecking from your ~/.ssh/config.



References



  • ssh_config man page





share|improve this answer






















  • @Shan - what happens if you say y at that prompt?
    – slm♦
    Aug 15 at 11:42










  • host will be added to the list of known_hosts (not recommended; I need to automate this)
    – Shan
    Aug 16 at 2:08











  • @Shan - see updates.
    – slm♦
    Aug 16 at 3:17














up vote
0
down vote













Looking at the man page for ssh-keyscan on Solaris 10/11 doesn't look to support that switch.



Reference: ssh-keyscan man page

ssh-keyscan [-v46] [-p port] [-T timeout] [-t type] 
 [-f file] [-] [host... | addrlist namelist] [...]


I think you can just do ssh-keyscan <hostname> however to retrieve the keys and then write them to your ~/.ssh/known_hosts file. This will still work but just won't put all the names that the host goes by on a single line like this:



hostname1, hostname1.fqdn.com .....


So you might have some cleanup work to do on the resulting known_hosts file.



Host authenticity



If you find you're encountering this issue which amounts to a catch 22, where you cannot scan a host that's not yet present in your known_hosts file:




The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?




You can work around this issue by temporarily disabling StrictHostKeyChecking:



$ cat ~/.ssh/config
...
StrictHostKeyChecking no
...


Then do your keyscan <host> ... command again. Once you're complete, be sure to remove the StrictHostKeyChecking from your ~/.ssh/config.



References



  • ssh_config man page





share|improve this answer






















  • @Shan - what happens if you say y at that prompt?
    – slm♦
    Aug 15 at 11:42










  • host will be added to the list of known_hosts (not recommended; I need to automate this)
    – Shan
    Aug 16 at 2:08











  • @Shan - see updates.
    – slm♦
    Aug 16 at 3:17












up vote
0
down vote










up vote
0
down vote









Looking at the man page for ssh-keyscan on Solaris 10/11 doesn't look to support that switch.



Reference: ssh-keyscan man page

ssh-keyscan [-v46] [-p port] [-T timeout] [-t type] 
 [-f file] [-] [host... | addrlist namelist] [...]


I think you can just do ssh-keyscan <hostname> however to retrieve the keys and then write them to your ~/.ssh/known_hosts file. This will still work but just won't put all the names that the host goes by on a single line like this:



hostname1, hostname1.fqdn.com .....


So you might have some cleanup work to do on the resulting known_hosts file.



Host authenticity



If you find you're encountering this issue which amounts to a catch 22, where you cannot scan a host that's not yet present in your known_hosts file:




The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?




You can work around this issue by temporarily disabling StrictHostKeyChecking:



$ cat ~/.ssh/config
...
StrictHostKeyChecking no
...


Then do your keyscan <host> ... command again. Once you're complete, be sure to remove the StrictHostKeyChecking from your ~/.ssh/config.



References



  • ssh_config man page





share|improve this answer














Looking at the man page for ssh-keyscan on Solaris 10/11 doesn't look to support that switch.



Reference: ssh-keyscan man page

ssh-keyscan [-v46] [-p port] [-T timeout] [-t type] 
 [-f file] [-] [host... | addrlist namelist] [...]


I think you can just do ssh-keyscan <hostname> however to retrieve the keys and then write them to your ~/.ssh/known_hosts file. This will still work but just won't put all the names that the host goes by on a single line like this:



hostname1, hostname1.fqdn.com .....


So you might have some cleanup work to do on the resulting known_hosts file.



Host authenticity



If you find you're encountering this issue which amounts to a catch 22, where you cannot scan a host that's not yet present in your known_hosts file:




The authenticity of host 'www.myserver.domain (IP)' can't be established. RSA key fingerprint is FINGERPRINT. Are you sure you want to continue connecting (yes/no)?




You can work around this issue by temporarily disabling StrictHostKeyChecking:



$ cat ~/.ssh/config
...
StrictHostKeyChecking no
...


Then do your keyscan <host> ... command again. Once you're complete, be sure to remove the StrictHostKeyChecking from your ~/.ssh/config.



References



  • ssh_config man page






share|improve this answer














share|improve this answer



share|improve this answer








edited Aug 16 at 3:16

























answered Aug 15 at 2:14









slm♦

238k65492662




238k65492662











  • @Shan - what happens if you say y at that prompt?
    – slm♦
    Aug 15 at 11:42










  • host will be added to the list of known_hosts (not recommended; I need to automate this)
    – Shan
    Aug 16 at 2:08











  • @Shan - see updates.
    – slm♦
    Aug 16 at 3:17
















  • @Shan - what happens if you say y at that prompt?
    – slm♦
    Aug 15 at 11:42










  • host will be added to the list of known_hosts (not recommended; I need to automate this)
    – Shan
    Aug 16 at 2:08











  • @Shan - see updates.
    – slm♦
    Aug 16 at 3:17















@Shan - what happens if you say y at that prompt?
– slm♦
Aug 15 at 11:42




@Shan - what happens if you say y at that prompt?
– slm♦
Aug 15 at 11:42












host will be added to the list of known_hosts (not recommended; I need to automate this)
– Shan
Aug 16 at 2:08





host will be added to the list of known_hosts (not recommended; I need to automate this)
– Shan
Aug 16 at 2:08













@Shan - see updates.
– slm♦
Aug 16 at 3:17




@Shan - see updates.
– slm♦
Aug 16 at 3:17

















 

draft saved


draft discarded















































 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f462656%2fequivalent-of-ssh-keyscan-h-in-solaris-10-11%23new-answer', 'question_page');

);

Post as a guest
































































-

Popular posts from this blog

Peggy Mitchell

Image
EastEnders character This article is about the soap opera character. For the British tennis player, see Peggy Michell. For the author, see Margaret Mitchell. Peggy Mitchell Barbara Windsor as Peggy Mitchell (2008) EastEnders character Portrayed by Jo Warne (1991) Barbara Windsor (1994–2016) Duration 1991, 1994–2010, 2013–2016 First appearance Episode 650 30 April 1991  ( 1991-04-30 ) Last appearance Episode 5286 17 May 2016  ( 2016-05-17 ) (appearance) Episode 5287 19 May 2016 (voiceover) Introduced by Michael Ferguson (1991) Barbara Emile (1994) Louise Berridge (2004) Kate Harwood (2005) Lorraine Newman (2013) Dominic Treadwell-Collins (2014) Spin-off appearances The Mitchells - Naked Truths (1998) Classification Former; regular Profile Other names Peggy Butcher Occupation Barmaid Businesswoman Pub landlady Jo Warne as Peggy Mitchell (1991) Family Family Mitchell Father Jack Martin Mother Lily Martin Sisters Aunt ...
Read more

Palaiologos

Image
Palaiologos Παλαιολόγος Palaeologus, Palaeologue Imperial Family Double-headed eagle with the family cypher Country Byzantine Empire, Duchy of Montferrat (remaining lineage after Empire annexed by Ottomans) Founded 11th century  ( 11th century ) Founder Nikephoros Palaiologos (first known) Final ruler Constantine XI Palaiologos (Byzantine Empire) Margaret Paleologa (Montferrat) Titles Byzantine Emperor Marquess of Montferrat Style(s) "Augustus" "Basileus" "Autokrator" Traditions Greek Orthodoxy (predominantly) Roman Catholicism (remaining lineage in Montferrat) Dissolution 1533  ( 1533 ) Cadet branches Claimants: House of Kastrioti (defunct) House of Rurik (defunct) Palaiologan dynasty Chronology Michael VIII 1259–1282 with Andronikos II as co-emperor, 1261–1282 Andronikos II 1282–1328 with Michael IX (1294–1320) and Andronikos III (1321–1328) as co-emperors Andronikos III 1328–1341 John...
Read more

The Forum (Inglewood, California)

Image
The Forum "LA Forum" Prairie Ave. façade of The Forum in 2014 Full name The Forum, presented by Chase Former names The Forum (1967–1988) Great Western Forum (1988–2003) Address 3900 W. Manchester Blvd Location Inglewood, California Coordinates Coordinates: 33°57′29″N 118°20′31″W  /  33.95806°N 118.34194°W  / 33.95806; -118.34194 Public transit     Downtown Inglewood station Owner The Madison Square Garden Company Operator MSG Entertainment Seating type Reserved Capacity 17,500 Half-bowl: 8,000 Construction Broke ground July 1, 1966  ( 1966-07-01 ) Opened December 30, 1967  ( 1967-12-30 ) Renovated 1988, 2012–2014 Construction cost $16 million Renovation: 2014: $76.5 million Architect Charles Luckman Associates (original) Brisbin Brook Beynon (renovation) Structural engineer Johnson & Nielsen Associates (original) Severud Associates (renovation) Genera...
Read more