Flag to turn off host-key check
Tobias Karlsson
jtkarlsson1973 at yahoo.com
Sat Jun 28 04:01:37 EST 2008
Yes, the example config below would work great for me too.
Just like Matt, I frequently put a whole new file system on hosts and the most convenient thing would be if ssh could be configured (for the lab) to ignore the change of host key.
/Tobias
--- On Tue, 6/24/08, Matt Anderson <mra at malloc.org> wrote:
From: Matt Anderson <mra at malloc.org>
Subject: Re: Flag to turn off host-key check
To: openssh-unix-dev at mindrot.org
Date: Tuesday, June 24, 2008, 12:21 PM
Daniel Kahn Gillmor wrote:
> Even better would be to enclose those directives underneath a Host
> statement that limits these options to the hosts which you expect to
> behave in this suboptimal way. e.g.:
>
> Host *.lab.example.org
> UserKnownHostsFile /dev/null
> StrictHostKeyChecking no
>
> That way you don't lose the host key checking protection for any other
> hosts.
Right, this setup looks ideal for my issue.
> Alternately, you could find ways to prevent the host keys on these
> machines from changing -- why are they changing like this?
In my case at least the OS is blown away and reinstalled fairly often.
I guess the keys could be saved off on another host and then copied back
each time, but those config file changes above would really simplify
things for the couple persistent systems that connect in.
-matt
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev at mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
More information about the openssh-unix-dev
mailing list