ssh confusion
Todd Zullinger
tmz at pobox.com
Sat Jan 23 08:53:51 UTC 2016
Konstantin Svist wrote:
> On 01/22/2016 03:55 PM, Tom Horsley wrote:
>> Does it maybe try every key and decide there are too many
>> that don't work when I go over a certain number?
>
> That's exactly what it does, unless you explicitly specify which key to
> use. This can be done from command line or in ~/.ssh/config (with
> hostname/IP match)
https://thomascannon.me/posts/fix-ssh-keys/ expands on this a bit.
The IdentitiesOnly option is useful in addition to IdentityFile in the
ssh config file.
I happened across that link while reading up on the recent ssh
client-side roaming bugs (CVE-2016-0777 and CVE-2016-0778).
--
Todd
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Honesty may be the best policy, but it's important to remember that
apparently, by elimination, dishonesty is the second-best policy.
-- George Carlin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 543 bytes
Desc: not available
URL: <http://lists.fedoraproject.org/pipermail/users/attachments/20160123/2aca8df0/attachment.sig>
More information about the users
mailing list