Can we have better ssh fingerprint collision messages?
Reindl Harald
h.reindl at thelounge.net
Tue Nov 12 12:24:16 UTC 2013
Am 12.11.2013 13:21, schrieb Matthew Miller:
> On Tue, Nov 12, 2013 at 12:31:04PM +0100, Reindl Harald wrote:
>>> It can't... but you have to be sure you have edited any entries that may apply and that it is absolutely correct on
>>> the change ... frankly it's quicker and simpler to test via changing the target host's key rather than your
>>> known_hosts
>> and that this is needed shows IMHO a bug because it should
>> in all cases give out the same warning message
>
> Harald, I'm not seeing the behavior you see either -- if I replace a host
> key with another one in known_hosts, I get the correct man-in-the-middle
> message
interesting, i can reproduce this as often i want in case
i am doing it in the first one for the short hostname only
and leave the entry with the FQ and IP-address untouched
openssh-clients-6.2p2-5.fc19.x86_64
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 263 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20131112/7eaf6797/attachment.sig>
More information about the devel
mailing list