Dear OpenSSH maintainers, I am packaging openssh-known-hosts for Debian with Philipp Kern (Cc:'ed) as my mentor. It is designed for institutions with many hosts and central host key management. It can download known_hosts files, verify their integrity, filter hostnames and merge everything into one file. That file is /var/lib/openssh-known-hosts/ssh_known_hosts. To lower configuration work for the admin my package's postinst script[1] creates a symlink /etc/ssh/ssh_known_hosts to it if there is nothing in that place already, else it emits a warning. Do you think it is OK to put that symlink into /etc/ssh/? What do you recommend for the case that /etc/ssh/ssh_known_hosts is already there? Greetings Timo [1] https://github.com/tiwe-de/openssh-known-hosts/blob/debian/debian/openssh-known-hosts.postinst
Attachment:
signature.asc
Description: This is a digitally signed message part.