Disabling host key checking on LAN
Walter Carlson
wlcrls47 at gmail.com
Thu Aug 27 08:21:53 AEST 2015
If I want to specify for LAN addresses that I don't want to deal with host
keys, how do I do that? Understanding the risks, knowing almost everyone
will say not to do this - it's a horrible idea, but deciding I want to do
it anyway. Tired of having to remove entries from known_hosts with the
multiple VM's I have that often change fingerprints, and am willing to live
with the risks.
/etc/ssh/ssh_config
Host 192.168.*.*
StrictHostKeyChecking no
UserKnownHostsFile /dev/null
or
UserKnownHostsFile none
Isn't doing the trick. With no known_hosts file in ~/.ssh or /etc, I still
get:
The authenticity of host '<hostname> (192.168.2.2)' can't be established.
ECDSA key fingerprint is SHA256:.....
Are you sure you want to continue connecting (yes/no)?
More information about the openssh-unix-dev
mailing list