also sprach Christoph Anton Mitterer <calestyo@scientia.net> [2015-11-12 17:41 +1300]: > > Hopeful, I was looking at VerifyHostKeyDNS for relief > The default StrictHostKeyChecking isn't secure enough for you, but > you'd trust DNSSEC here? ;-P Why should I not trust DNSSEC for hosts where I control the zone? -- .''`. martin f. krafft <madduck@d.o> @martinkrafft : :' : proud Debian developer `. `'` http://people.debian.org/~madduck `- Debian - when you have better things to do than fixing systems
Attachment:
digital_signature_gpg.asc
Description: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)