openssh bugs - Jun 2004 - [Bug 454] SSH doesn't consider distinguish ports for host-key verification

http://bugzilla.mindrot.org/show_bug.cgi?id=454





------- Additional Comments From robbat2 at gentoo.org  2004-06-11 15:34 -------
will this ever be implemented, or is it waiting for somebody to send in code 
for it?

existing $HOME/.ssh/known_hosts file has the following format:
'host keytype keydata'
where host is a either an IP or a name that resolves to the IP of the machine 
in question.
/etc/ssh/ssh_known_hosts has the following format [according to ssh(1)]:
'host[,host]* keydata [comment]*'

since we need to support IPv6 addresses, we cannot use a ':' as the 
address/port seperator, and since a comma is used to seperate multiple items in 
the latter case, that is out as well. I'd like to suggest a '@'.

My vision of how it should work:
old style entries as above should continue to work as they do presently (all 
connections to a host with only an old entry should be subject to the check), 
but ssh should add entries in the new format only.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=454

robbat2 at gentoo.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |robbat2 at gentoo.org





------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

http://bugzilla.mindrot.org/show_bug.cgi?id=454





------- Additional Comments From djm at mindrot.org  2004-06-11 15:37 -------
An implementation like Markus' description would have the most chance of
being
accepted (see comment #1).



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.