# My SSH config. This does leak existense of some hosts where I have
# access, but they should require SSH key authentication anyway.

Host *
    # Ensure KnownHosts are unreadable if leaked.
    # While you might be reading this file from GitHub, I haven't
    # specified all hosts here.
    HashKnownHosts yes
    
    # Verify SSHFP records. In case DNSSEC is used this skips the
    # question on whether you trust the fingerprint or not.
    VerifyHostKeyDNS=yes

    # Multiple sessions over single connection
    ControlMaster yes
    # Path for the control socket
    ControlPath /tmp/SSH_%u-%r.%h.%p
    # Keep connection open in the background even after connection has been
    # closed.
    ControlPersist yes

    ForwardAgent no
    ForwardX11 no

    IdentityFile ~/.ssh/Mikaela_Suomalainen

    LogLevel VERBOSE
    Protocol 2

    # Always try public key authentication
    PubkeyAuthentication yes

    # "ping" the server every minute, if it doesn't reply in three
    # "pings", disconnect.
    ServerAliveInterval 60

Host hilla
    HostName hilla.kapsi.fi
    User mikaela

Host lakka
    HostName lakka.kapsi.fi
    User mikaela

Host synvaler
    HostName synvaler.mikaela.info
    AddressFamily inet6
    User nemo

Host verdarik
    HostName verdarik.mikaela.info
    User mikaela

Host tezagm
    HostName tezagm.mikaela.info
    User mikaela