[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ssh, where do the host come from

On Fri, 16 May 2025, tomas@tuxteam.de wrote:

> On Fri, May 16, 2025 at 04:09:10PM +0000, fxkl47BF@protonmail.com wrote:
>
> [...]
>
>> as an aside
>> in known_hosts there are many key fingerprints with no host identification
>> is there a way to identify what host the fingerprint is for
>
> The file format is described in man 8 sshd.
>
> Those with "no host identification" most probably just have a hashed host
> name: the idea is that an attacker who gets access to your user account
> doesn't get a neat list of which hosts to try next.
>
> There is an (sshd, I think) option to change that.

i see

Alternately, hostnames may be stored in a hashed form which hides host names and addresses should the file's contents be disclosed.  Hashed hostnames start with a ‘|’ character.  Only one hashed hostname may appear on a single line and none of the above negation or wildcard operators may be applied.

i don't see how to change it
Reply to: