version 1.203, 2015/02/02 07:41:40 |
version 1.204, 2015/02/16 22:13:32 |
|
|
after authentication has completed and add them to |
after authentication has completed and add them to |
.Cm UserKnownHostsFile . |
.Cm UserKnownHostsFile . |
The argument must be |
The argument must be |
.Dq yes |
.Dq yes , |
or |
|
.Dq no |
.Dq no |
(the default). |
(the default) or |
|
.Dq ask . |
Enabling this option allows learning alternate hostkeys for a server |
Enabling this option allows learning alternate hostkeys for a server |
and supports graceful key rotation by allowing a server to send replacement |
and supports graceful key rotation by allowing a server to send replacement |
public keys before old ones are removed. |
public keys before old ones are removed. |
Additional hostkeys are only accepted if the key used to authenticate the |
Additional hostkeys are only accepted if the key used to authenticate the |
host was already trusted or explicity accepted by the user. |
host was already trusted or explicity accepted by the user. |
|
If |
|
.Cm UpdateHostKeys |
|
is set to |
|
.Dq ask , |
|
then the user is asked to confirm the modifications to the known_hosts file. |
.Pp |
.Pp |
Presently, only |
Presently, only |
.Xr sshd 8 |
.Xr sshd 8 |