WinSCP .NET library: Connect to SFTP server without specifying SSH host key fingerprint

user446923 picture user446923 · Jul 30, 2013 · Viewed 15.5k times · Source

In the current stable release of WinSCP, it seems that using SshHostKeyFingerprint is mandatory and there are no ways to connect to SFTP server without that in SessionOptions. I can see that the ability to bypass is added to the beta (5.2) but I was wondering whether or not it's possible to connect without this fingerprint.

Answer

Martin Prikryl picture Martin Prikryl · Jul 30, 2013

First, make sure you understand that you give-up any security, when you try to bypass SSH host key check. You effectively lose a protection against man-in-the-middle attacks.

Anyway, you can use use SessionOptions.GiveUpSecurityAndAcceptAnySshHostKey.

It's NOT recommended though. You should always set SessionOptions.SshHostKeyFingerprint.
Learn how to determine SSH host key fingerprint.

See also Suppress the use of host key in SFTP or SCP using WinSCP.