Can we have better ssh fingerprint collision messages?

Reindl Harald h.reindl at
Tue Nov 12 12:24:16 UTC 2013

Am 12.11.2013 13:21, schrieb Matthew Miller:
> On Tue, Nov 12, 2013 at 12:31:04PM +0100, Reindl Harald wrote:
>>> It can't... but you have to be sure you have edited any entries that may apply and that it is absolutely correct on
>>> the change ... frankly it's quicker and simpler to test via changing the target host's key rather than your
>>> known_hosts
>> and that this is needed shows IMHO a bug because it should
>> in all cases give out the same warning message
> Harald, I'm not seeing the behavior you see either -- if I replace a host
> key with another one in known_hosts, I get the correct man-in-the-middle
> message

interesting, i can reproduce this as often i want in case
i am doing it in the first one for the short hostname only
and leave the entry with the FQ and IP-address untouched


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 263 bytes
Desc: OpenPGP digital signature
URL: <>

More information about the devel mailing list