Re: HashKnownHosts

To: debian-devel@lists.debian.org
Subject: Re: HashKnownHosts
From: Colin Watson <cjwatson@debian.org>
Date: Sun, 3 Jul 2005 20:59:57 +0100
Message-id: <[🔎] 20050703195957.GA26444@riva.ucam.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20050703192551.GA14952@seehuhn.de>
References: <[🔎] 20050702091926.GA6989@wonderland.linux.it> <[🔎] 87zmt58ij8.fsf@deneb.enyo.de> <[🔎] 20050702174831.GA2549@rnb.grep.be> <[🔎] 87psu1xc5p.fsf@deneb.enyo.de> <[🔎] 20050702205912.GB2549@rnb.grep.be> <[🔎] 20050702214240.GB9896@wonderland.linux.it> <[🔎] 20050702232047.GD8598@riva.ucam.org> <[🔎] 20050703192551.GA14952@seehuhn.de>

On Sun, Jul 03, 2005 at 08:25:51PM +0100, Jochen Voss wrote:
> On Sun, Jul 03, 2005 at 12:20:47AM +0100, Colin Watson wrote:
> > On Sat, Jul 02, 2005 at 11:42:40PM +0200, Marco d'Itri wrote:
> > > There is also the quite important point that even the most stupid of the
> > > attackers could just look at ~/.bash_profile instead and get all or most
> > > of the hostnames anyway, so I still do not see the benefits of enabling
> > > this option by default.
> > 
> > Firstly, ~/.bash_profile expires regularly; ...
> 
> Are you both speaking about ~/.bash_history by chance?

At least I meant that, yes.

-- 
Colin Watson                                       [cjwatson@debian.org]

Reply to:

References:
- HashKnownHosts
  - From: md@Linux.IT (Marco d'Itri)
- Re: HashKnownHosts
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: HashKnownHosts
  - From: Wouter Verhelst <wouter@debian.org>
- Re: HashKnownHosts
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: HashKnownHosts
  - From: Wouter Verhelst <wouter@debian.org>
- Re: HashKnownHosts
  - From: md@Linux.IT (Marco d'Itri)
- Re: HashKnownHosts
  - From: Colin Watson <cjwatson@debian.org>
- Re: HashKnownHosts
  - From: Jochen Voss <voss@seehuhn.de>

Prev by Date: Re: HashKnownHosts
Next by Date: Re: HashKnownHosts
Previous by thread: Re: HashKnownHosts
Next by thread: Re: HashKnownHosts
Index(es):
- Date
- Thread