ssh_config: add UpdateHostKeys yes

This commit is contained in:
Aminda Suomalainen 2015-09-02 08:15:16 +03:00
parent c05b52354f
commit 66f604a6dd
2 changed files with 16 additions and 1 deletions

View File

@ -33,9 +33,16 @@ Host *
# "ping" the server every minute. # "ping" the server every minute.
ServerAliveInterval 60 ServerAliveInterval 60
# OpenSSH 6.8+ - ask all host keys from servers.
# I trust the server admins and ways to identify the keys (DNSSEC,
# manual)
UpdateHostKeys yes
# Verify SSHFP records. In case DNSSEC is used this skips the # Verify SSHFP records. In case DNSSEC is used this skips the
# question on whether you trust the fingerprint or not. # question on whether you trust the fingerprint or not.
VerifyHostKeyDNS=yes # All my hosts run DNSSEC validating Unbound on localhost and use it
# for all DNS queries. Yours should too.
VerifyHostKeyDNS yes
Host hilla Host hilla
HostName hilla.kapsi.fi HostName hilla.kapsi.fi

View File

@ -31,6 +31,14 @@ Host *
# "ping" the server every minute. # "ping" the server every minute.
ServerAliveInterval 60 ServerAliveInterval 60
# OpenSSH 6.8+ - ask all host keys from servers.
# I trust the server admins and ways to identify the keys (DNSSEC,
# manual)
UpdateHostKeys yes
# Verify SSHFP records. In case DNSSEC is used this skips the # Verify SSHFP records. In case DNSSEC is used this skips the
# question on whether you trust the fingerprint or not. # question on whether you trust the fingerprint or not.
VerifyHostKeyDNS=yes VerifyHostKeyDNS=yes
# All my hosts run DNSSEC validating Unbound on localhost and use it
# for all DNS queries. Yours should too.
VerifyHostKeyDNS yes