Bug#784288: openssh-server: create hostkeys with $(hostname -f) as comment

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#784288: openssh-server: create hostkeys with $(hostname -f) as comment
From: Christoph Anton Mitterer <calestyo@scientia.net>
Date: Tue, 05 May 2015 01:27:04 +0200
Message-id: <[🔎] 20150504232704.28817.18463.reportbug@heisenberg.scientia.net>
Reply-to: Christoph Anton Mitterer <calestyo@scientia.net>, 784288@bugs.debian.org

Package: openssh-server
Version: 1:6.7p1-6
Severity: wishlist


Hi.

Currently, when the package is installed and hostkeys are created
this is apparently done with setting the key's comment field in a
user@hostname fashion, I guess imply by using ssh-keygen's default.

It may be cosmetically nicer to explicity set just the fully
quallified hostname (via -C "$(hostname --fqdn)").

The idea is, if one mixes all kinds of keys in e.g a file thant
"root@bar.org" indicates "this is user root's key from host bar.org",
i.e. typically what one has in ~/.ssh/id_rsa and friends.

For the host key used by sshd I'd think just "bar.org" would be better,
so one would easily see, that this is the host key from bar.org
and not the user key from it's root user.
Further, it's not even said that sshd will actually run as user root,
that could have been changed by the admin.


Cheers,
Chris.

Reply to:

Prev by Date: [bts-link] source package openssh
Next by Date: Processed: [bts-link] source package openssh
Previous by thread: Processed: [bts-link] source package openssh
Next by thread: Bug#751636: openssh-server: ssh sessions are not cleanly termined on shutdown/restart with systemd
Index(es):
- Date
- Thread