Hi, it becomes more and more common to have machines with dynamically assigned IP addresses online (e.g. DSL), which can be found through dynamic DNS entries. Unfortunately, the "Known Hosts" mechanism doesn't work for these machines: Since the entry is made for the IP address, there's a new entry every time the address changes. Therefore, an option should be invented which allows to store the host key under the DNS name only. regards Hadmut
>Therefore, an option should be invented which allows to >store the host key under the DNS name only. > >Why are we storing IP addresses in known_hosts files anyway? It doesn't appear to be universal -- SSH2 only, perhaps? -- and as Hadmut points out, it's plainly wrong (IP != Identity, thus HostKeyAlias and the whole existence of cryptographic authentication). --Dan
Hi! On Sun, Jul 06, 2003 at 05:59:45PM +0200, Hadmut Danisch wrote:> Unfortunately, the "Known Hosts" mechanism doesn't work for > these machines: Since the entry is made for the IP address, > there's a new entry every time the address changes.Try setting CheckHostIP no in ssh_config. Ciao Thomas
On Sun, Jul 06, 2003 at 08:38:54PM +0200, Thomas Binder wrote:> > Try setting > > CheckHostIP no > > in ssh_config. >I urgently need to have the check performed, just with the dns name. regards Hadmut
checkhostip no On Sun, Jul 06, 2003 at 05:59:45PM +0200, Hadmut Danisch wrote:> Hi, > > it becomes more and more common to have machines with > dynamically assigned IP addresses online (e.g. DSL), which > can be found through dynamic DNS entries. > > Unfortunately, the "Known Hosts" mechanism doesn't work for > these machines: Since the entry is made for the IP address, > there's a new entry every time the address changes. > > > Therefore, an option should be invented which allows to > store the host key under the DNS name only. > > > regards > Hadmut > > _______________________________________________ > openssh-unix-dev mailing list > openssh-unix-dev at mindrot.org > http://www.mindrot.org/mailman/listinfo/openssh-unix-dev