Thanks. The patch works as intended, though I have no tool to map those key fingerprints back into the actual keys listed in .ssh/authorized_keys... Phil