[solved] SSH hostkey authentication and users' known_hosts files

To: debian users <debian-user@lists.debian.org>
Subject: [solved] SSH hostkey authentication and users' known_hosts files
From: martin f krafft <madduck@debian.org>
Date: Wed, 17 Nov 2004 03:20:33 +0100
Message-id: <[🔎] 20041117022033.GA24555@cirrus.madduck.net>
Mail-followup-to: debian users <debian-user@lists.debian.org>
In-reply-to: <[🔎] 20041101071002.GA8790@cirrus.madduck.net>
References: <[🔎] 20041101071002.GA8790@cirrus.madduck.net>

also sprach martin f krafft <madduck@debian.org> [2004.11.01.0810 +0100]:
> We are successfully using SSH hostkey-based authentication for our
> cluster. What I find really strange is that users still get to see
> messages like:
> 
>   Warning: Permanently added the RSA host key for IP address
>   '192.168.0.136' to the list of known hosts.

Thanks to weasel, this is solved. The trick is to prefix each
hostkey with a comma-separated list of all the names ever used to
access it, including its IP:

  node36.cluster.ailab.ch,node36,192.168.0.136 ssh-rsa AAAAB3NzaC1yc[...]

Previously, I only had

  node36 ssh-rsa AAAAB3NzaC1yc[...]

-- 
Please do not send copies of list mail to me; I read the list!
 
 .''`.     martin f. krafft <madduck@debian.org>
: :'  :    proud Debian developer, admin, user, and author
`. `'`
  `-  Debian - when you have better things to do than fixing a system
 
Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver!

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- SSH hostkey authentication and users' known_hosts files
  - From: martin f krafft <madduck@debian.org>

Prev by Date: Re: Testing to Sarge "sources.list"
Next by Date: [solved] SSH host key stored with IP, not host name
Previous by thread: SSH hostkey authentication and users' known_hosts files
Next by thread: galeon-common in Experimental not upgradeable
Index(es):
- Date
- Thread