prompt to update a host key

Jeremy Lin jeremy.lin at
Fri Mar 15 11:09:44 AEDT 2019

Simple, I wasn't aware of that option, and that approach never
occurred to me. :) Thanks, that should be an effective workaround.

I think the extra StrictHostKeyChecking option would be easier for
someone to find, and arguably has some minor security benefit, but
it's no longer clear to me whether it would be worth the effort.

Thanks again.


On Thu, Mar 14, 2019 at 4:59 PM Josh Soref <jsoref at> wrote:
> Out of curiosity, why don't you just not store a host key for such systems? That's what we do:
> UserKnownHostsFile /dev/null
> Historically I would have been interested in such a thing, but I've long since given up.

More information about the openssh-unix-dev mailing list