Hikvision NVR 7616 and SSH host key changes???

[archjeb]

Folks,

I noticed that when I rebooted and started the SSH access on the NVR, that it appears that the host key changed. Is this expected behavior?

$ ssh [email protected]
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
SHA256:JW2aQFMFeufRc/zAR3yUy9IegEkEgCUr45wigduBE1s.
Please contact your system administrator.
Add correct host key in /home/<user>/.ssh/known_hosts to get rid of this message.
Offending RSA key in /home/<user>/.ssh/known_hosts:118
RSA host key for 192.168.1.22 has changed and you have requested strict checking.
Host key verification failed.



Of course I can just delete the key in .ssh/known_hosts but kind of annoying.

Also, is there a way to enable ssh via the ISAPI interface? It appears that SSH is just a one time use and you have to re-enable it every time you want to access it.

Thanks,

-J

 

[alastairstevenson]

I noticed that when I rebooted and started the SSH access on the NVR, that it appears that the host key changed. Is this expected behavior?

Yes, it's regenerated at startup.

mkdir -p /etc/dropbear && cd /etc/dropbear && dropbearkey -t rsa -f dropbear_rsa_host_key&

 

[archjeb]

Is there a way to enable SSH via the ISAP or another method? Or am I stuck doing it through the web UI?

Thanks,

-J

 

[alastairstevenson]

Is there a way to enable SSH via the ISAP or another method?

I'm sorry, I don't know of an ISAPI method.