Why does a SSH server need a host key-pair?

You already quite understand how the public key cryptography works and how the client is authenticated to the server using public key authentication.

The same thing is needed on the other direction. Internet and computer networks are evil place and it is quite easy to redirect traffic, spoof DNS or somehow make you connect to evil host, which would like to capture your password or other sensitive information. And it can not be ensured using public key only, because everyone can send you this public key, but only the server you want to connect can send you signature of your data that you can verify using the public key of the host.

Tags:

Ssh

Openssh

Ssh Host Key

Related

Is WhatsApp or Facebook Messenger secret conversation a reasonable method for transferring passwords? Why do some sites ask for username/email and password on two separate screens? Can a website download documents, images, or other information onto my iMac without my consent or awareness? Is laptop "secure sleep" mode theoretically possible? Strange code running at startup How trustful are KeePass plugins? Is the unauthorized deletion of data considered a breach of integrity or availability? Why would distributing via Google Play be more secure than distributing APKs? Sharing PGP keys Are there any known cases of antivirus software intentionally sending false alarms? How can I decrypt a Word document that I know the password to without opening it in a word processor? Has anybody successfully decrypted their files after paying the WannaCrypt ransom?

Recent Posts