[Bug 1625] New: [PATCH] Make configuration of key verification from DNS easier

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Tue Jul 28 02:14:52 EST 2009


           Summary: [PATCH] Make configuration of key verification from
                    DNS easier
           Product: Portable OpenSSH
           Version: 5.2p1
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: ssh
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: vonsch at gmail.com

Created an attachment (id=1665)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1665)
proposed patch

Configuration of key verification from DNS currently requires "options
edns0" in /etc/resolv.conf.

Such requirement has two drawbacks:
- every DNS request is the EDNS0 packet thus more bandwidth is consumed
- "options edns0" in resolv.conf is really not intuitive

Proposed patch makes verification working even if "options edns0" is
not set.

Reference: https://bugzilla.redhat.com/show_bug.cgi?id=205842

Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list