-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
HashKnownHosts set to yes #115
Comments
Good catch. I'll add. Thanks. |
Adding this line to /etc/ssh/sshd_config does not work for me:
removing it fixes the problem. I think it is supposed to go into /etc/ssh/ssh_config |
Maybe only some versions support the config? When I |
So this is an SSH client configuration, not a SSH server configuration. It is for |
This should be noted in the guide as a separate step from the other sshd_config changes to reduce confusion. |
Thanks for all your hard work.
I would like to clarify that nowhere did I find mention of HashKnownHosts and that it is better to set HashKnownHosts yes in ssh_config.
This is especially important when using public keys instead of password login. For example, if a server is used as a point of entry to another server via ssh.
You can read more about this in:
mozilla OpenSSH server.
mit edu about sshworm
linux-audit
serverfault
Maybe this will be useful to someone.
The text was updated successfully, but these errors were encountered: