[Bug 2305] sshd does not accept @cert-authority when doing host based authentication.

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Nov 15 22:54:59 EST 2014


https://bugzilla.mindrot.org/show_bug.cgi?id=2305

--- Comment #4 from Peter <peter at pean.org> ---
Like I said before, as far as I can see the problem is here:

https://github.com/openssh/openssh-portable/blob/master/auth2-hostbased.c#L189-L222

--
    host_status = check_key_in_hostfiles(pw, key, lookup,
        _PATH_SSH_SYSTEM_HOSTFILE,
        options.ignore_user_known_hosts ? NULL :
_PATH_SSH_USER_HOSTFILE);
--

This block does not take in to account the possibility that the hostkey
can be a certificate while code surrounding it does.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list