[Bug 393] 'known_hosts' file should be indexed by IP:PORT, not just IP
Carson Gaspar
carson at taltos.org
Wed Sep 11 10:06:29 EST 2002
--On Tuesday, September 10, 2002 6:50 PM -0500 Ben Lindstrom
<mouring at etoh.eviladmin.org> wrote:
> Your missing his point.
>
> The whine about
>
> machine.domain.com:22
>
> vs
>
> machine.domain.com:2222
>
> If you have BOTH in your known_hosts due to the fact machine.domain.com is
> a NAT box and port 2222 is really an internal machine. How does hostbased
> authentication know which one to use?
I was being a bit dense.
I'd say you put machine.domain.com:22 or machine.domain.com:2222 in your
.shosts file. Or you accept any matching key from a host with multiple
entries.
--
Carson
More information about the openssh-unix-dev
mailing list