diff options
| author |   djm <djm@openbsd.org> | 2017-09-03 23:33:13 +0000 |
|---|---|---|
| committer | djm <djm@openbsd.org> | 2017-09-03 23:33:13 +0000 |
| commit | 5c4ac18f1e6cd41ab1b6ecf5cb87ae5fa0fee3fc (patch) | |
| tree | 062ecd8686d2fee6f2fa34e7f4cf3f0dac311bcd /sys/dev | |
| parent | fdc: defer probing of floppy drives (diff) | |
| download | wireguard-openbsd-5c4ac18f1e6cd41ab1b6ecf5cb87ae5fa0fee3fc.tar.xz wireguard-openbsd-5c4ac18f1e6cd41ab1b6ecf5cb87ae5fa0fee3fc.zip | |
Expand ssh_config's StrictModes option with two new settings:
StrictModes=accept-new will automatically accept hitherto-unseen keys
but will refuse connections for changed or invalid hostkeys.
StrictModes=off is the same as StrictModes=no
Motivation:
StrictModes=no combines two behaviours for host key processing:
automatically learning new hostkeys and continuing to connect to hosts
with invalid/changed hostkeys. The latter behaviour is quite dangerous
since it removes most of the protections the SSH protocol is supposed to
provide.
Quite a few users want to automatically learn hostkeys however, so
this makes that feature available with less danger.
At some point in the future, StrictModes=no will change to be a synonym
for accept-new, with its current behaviour remaining available via
StrictModes=off.
bz#2400, suggested by Michael Samuel; ok markus
Diffstat (limited to 'sys/dev')
0 files changed, 0 insertions, 0 deletions