Re: HashKnownHosts
* Colin Watson:
> On Sat, Jul 02, 2005 at 09:04:18PM +0200, Florian Weimer wrote:
>> * Wouter Verhelst:
>> > Some of us actually do care what is listed in that file, and edit it
>> > from time to time. Hashing those names makes that much harder
>>
>> There should be tools supporting this, I agree.
>
> There is such a tool, which I mentioned in the changelog:
>
> - ssh and ssh-keyscan now support hashing of known_hosts files for
> improved privacy. ssh-keygen has new options for managing known_hosts
> files, which understand hashing.
AFAICS, ssh-keygen does not permit adding new entries, and it does not
allow removal of all entries with a specific hash.
Reply to: