SSH hostkey authentication and users' known_hosts files
From: martin f krafft (madduck_at_debian.org)
Date: 11/01/04
- Previous message: Eriberto: "Revoked certificate: how to publish it?"
- Next in thread: martin f krafft: "[solved] SSH hostkey authentication and users' known_hosts files"
- Reply: martin f krafft: "[solved] SSH hostkey authentication and users' known_hosts files"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Mon, 1 Nov 2004 08:10:02 +0100 To: debian users <debian-user@lists.debian.org>
We are successfully using SSH hostkey-based authentication for our
cluster. What I find really strange is that users still get to see
messages like:
Warning: Permanently added the RSA host key for IP address
'192.168.0.136' to the list of known hosts.
On and for each host, /etc/ssh/known_hosts contains the RSA and DSA
keys, so there is really no point in adding them to the user's
database. Moreover, if the admin actually puts a new host in place,
users might get confused by the warning message.
Is this a bug or a feature?
How can I disable the use of ~/.ssh/known_hosts when the needed key
is present in /etc/ssh/ssh_known_hosts?
-- Please do not send copies of list mail to me; I read the list! .''`. martin f. krafft <madduck@debian.org> : :' : proud Debian developer, admin, user, and author `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver!
-- To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
- application/pgp-signature attachment: Digital signature
- Previous message: Eriberto: "Revoked certificate: how to publish it?"
- Next in thread: martin f krafft: "[solved] SSH hostkey authentication and users' known_hosts files"
- Reply: martin f krafft: "[solved] SSH hostkey authentication and users' known_hosts files"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
