Bug#743434: openssh-client: wildcard host precedence and CanonicalizeHostname
03.04.2014, в 11:58, sergio <mailbox@sergio.spb.ru> написал(а):
> On 04/03/2014 04:52 AM, Russ Allbery wrote:
>
>> That host block doesn't match that ssh command. Try changing it to:
>>
>> Host foo foo.mydomain.com
>>
>> and see if you get different behavior.
He said that you wrote "host foo.mydomain.com" and use command for DIFFERENT domain "foo" (ssh -vvv foo ...) in your previous letter. I think it was just a blot.
The answer you need was in the first letter - change the order of blocks in local config. Even after rereading foo matches the first block that has no delegate option.
>
> Have you noticed CanonicalizeHostname and CanonicalDomains?
>
> This block matches that ssh command otherwise could you explain why
> I got all other options from it and this debug line:
>
> % ssh -vvv foo klist |& grep re-re
> debug1: Hostname has changed; re-reading configuration
>
>
>
> /usr/share/doc/openssh-client/changelog.Debian.gz
>
> openssh (1:6.5p1-1) unstable; urgency=medium
>
> * New upstream release (http://www.openssh.com/txt/release-6.5,
> LP: #1275068):
> - ssh(1): Add support for client-side hostname canonicalisation using a
> set of DNS suffixes and rules in ssh_config(5). This allows
> unqualified names to be canonicalised to fully-qualified domain names
> to eliminate ambiguity when looking up keys in known_hosts or checking
> host certificate names (closes: #115286).
>
>
> --
> sergio.
>
>
> --
> To UNSUBSCRIBE, email to debian-ssh-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> Archive: [🔎] 533D14C0.3060008@sergio.spb.ru">https://lists.debian.org/[🔎] 533D14C0.3060008@sergio.spb.ru
>
Reply to: