Displaying 1 result from an estimated 1 matches for "lukastesar03".
2024 Jun 05
1
[Bug 3698] New: SSHFP validation fails when multiple keys of the same type are found in DNS
...pe are found in DNS
Product: Portable OpenSSH
Version: 8.7p1
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P5
Component: ssh
Assignee: unassigned-bugs at mindrot.org
Reporter: lukastesar03 at gmail.com
This bug was already reported back in 2022 in the openssh-unix-dev
ML[1] with no response.
Basically the OpenSSH client is not compliant with RFC4255 in the way
it checks the SSHFP records.
> "If the algorithm and fingerprint of the key received from the SSH server match th...