[Bug 2738] New: UpdateHostKeys does not check keys in secondary known_hosts files
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Thu Jul 6 06:34:06 AEST 2017
https://bugzilla.mindrot.org/show_bug.cgi?id=2738
Bug ID: 2738
Summary: UpdateHostKeys does not check keys in secondary
known_hosts files
Product: Portable OpenSSH
Version: 7.4p1
Hardware: amd64
OS: Linux
Status: NEW
Severity: minor
Priority: P5
Component: ssh
Assignee: unassigned-bugs at mindrot.org
Reporter: jaap at jaapeldering.nl
I have the following settings (among others) in my ~/.ssh/config:
HashKnownHosts no
UserKnownHostsFile ~/.ssh/known_hosts ~/.ssh/known_hosts_common
UpdateHostKeys ask
When I connect to a known host, ssh nicely asks me to store new host
keys it learned about, and stores them in ~/.ssh/known_hosts. All fine
so far.
Now I move these entries to ~/.ssh/known_hosts_common, and next time I
connect to that host, ssh asks me again about the same host keys. Thus,
it seems it doesn't check the secondary file given to
UserKnownHostsFile for presence of host keys.
Background information: I'm synchronizing the second file
~/.ssh/known_hosts_common between multiple machines/accounts, and
prefer to store some common hosts there, and not clutter my primary
file ~/.ssh/known_hosts with duplicate host keys.
Conclusion: it would be nice if ssh would check all known_hosts files
for presence of new host keys before asking to add them.
--
You are receiving this mail because:
You are watching the assignee of the bug.
More information about the openssh-bugs
mailing list