Host key verification (known_hosts) with ProxyJump/ProxyCommand

Darren Tucker dtucker at dtucker.net
Fri Aug 18 18:28:21 AEST 2023


On Fri, 18 Aug 2023 at 17:18, Stuart Longland VK4MSL <me at vk4msl.com> wrote:
> On 18/8/23 15:39, Darren Tucker wrote:
[...]
> > I think you just need "HostKeyAlias mytarget" here.
>
> Ahh, in my scanning through the `ssh_config` manpage, I missed this, and
> change logs seem to indicate this feature has been around since at least
> 2017, so should not cause compatibility issues with the other users.

The OpenSSH Release Notes page is a good way to check on this kind of
thing, it has all release notes in reverse chronological order:
https://www.openssh.com/releasenotes.html

In this case it shows that HostKeyAlias was added in version 2.5.1 in
2001.  If you're using a version older than that, the lack of
HostKeyAliases would be the least of your problems.

-- 
Darren Tucker (dtucker at dtucker.net)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860  37F4 9357 ECEF 11EA A6FA
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.


More information about the openssh-unix-dev mailing list