host based authentication in protocol version 2
Brent A Nelson
brent at phys.ufl.edu
Tue Feb 13 11:05:03 EST 2001
Well, after trying repeatedly to get an ssh version 2 client to connect to
an openssh server as a trusted host, and searching throughout the Internet
and the openssh mailing list archives, I finally discovered the following
statement at http://www.snailbook.com/faq/trusted-host-howto.auto.html:
"Note that OpenSSH does not implement hostbased authentication in its
protocol 2 support."
Doh! Well, that certainly explains the problem! ;-)
So, I guess we can force all our clients or servers to be version 1 for
now, but does anyone have any idea when hostbased authentication will be
implemented in the version 2 support?
Also, the openssh documentation implies that this SHOULD work (talks about
ssh_known_hosts and ssh_known_hosts2 quite interchangeably). Any chance
that the documentation can be ammended until version 2 support for
trusted-host authentication is actually added? It might save some
frustration...
Many thanks,
Brent Nelson
Sys. Manager
Dept. of Physics
University of Florida
More information about the openssh-unix-dev
mailing list