[Bug 1777] KnownHostsCommand
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Fri Oct 23 14:23:40 AEDT 2015
https://bugzilla.mindrot.org/show_bug.cgi?id=1777
Damien Miller <djm at mindrot.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |djm at mindrot.org
--- Comment #3 from Damien Miller <djm at mindrot.org> ---
This is possible to do, but without some significant changes is likely
to be fairly inefficient.
ssh reads known_hosts a couple of times during connection. At least
once to figure out what host key algorithms are in use, then again to
verify the hostkey sent and (optionally) a couple of times to deal with
UpdateHostkeys messages from the server.
This could result in the KnownHostsCommand being run a bunch of times
and, unless it was very efficient, could make ssh pretty slow.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list