Displaying 1 result from an estimated 1 matches for "key_cert_check_author".
2017 Jun 12
7
[Bug 2728] New: HostKeyAlias not respected for certificate authority host key validation
...hment 2994
--> https://bugzilla.mindrot.org/attachment.cgi?id=2994&action=edit
Patch to respect HostKeyAlias when using host certificates
When connecting to ssh server by IP address (or another DNS name), with
HostKeyAlias set to the name of the principal signed by the CA, one
gets:
> key_cert_check_authority: invalid certificate
> Certificate invalid: name is not a listed principal
The proposed patch changes this behavior by using
options.host_key_alias in the contingency that it is set.
--
You are receiving this mail because:
You are watching the assignee of the bug.