UserKnownHostsFile for copr-*-dev machines
Kevin Fenzi
kevin at scrye.com
Thu Apr 2 16:38:31 UTC 2015
On Thu, 02 Apr 2015 18:06:05 +0200
Miroslav Suchý <msuchy at redhat.com> wrote:
> Valentin and me are now playing quite a lot with copr-*-dev as part
> of new OpenStack testing and I always have to ask somebody to wipe
> the entry from known_hosts on lockbox otherwise rbac will refuse to
> connect.
>
> Can I suggest to put into ssh_config on lockbox:
>
> Host copr-be-dev.cloud.fedoraproject.org
> copr-fe-dev.cloud.fedoraproject.org UserKnownHostsFile /dev/null
>
> Can I get two +1? And can somebody put it there then?
Instead how about this:
The new ansible 1.9 version has a known_hosts module. ;)
So, stick at the top of your playbook:
- name: clean out old known_hosts
local_action: known_hosts path=/root/.ssh/known_hosts name=copr-be-dev.cloud.fedoraproject.org state=absent
and we can remove it when not needed?
kevin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/infrastructure/attachments/20150402/003951e4/attachment.sig>
More information about the infrastructure
mailing list