From owner-cvs-all Fri Sep 25 04:41:59 1998 Return-Path: Received: (from daemon@localhost) by hub.freebsd.org (8.8.8/8.8.8) id EAA19088 for cvs-all-outgoing; Fri, 25 Sep 1998 04:41:59 -0700 (PDT) (envelope-from owner-cvs-all) Received: from ns1.yes.no (ns1.yes.no [195.119.24.10]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA19083 for ; Fri, 25 Sep 1998 04:41:57 -0700 (PDT) (envelope-from eivind@bitbox.follo.net) Received: from bitbox.follo.net (bitbox.follo.net [195.204.143.218]) by ns1.yes.no (8.9.1a/8.9.1) with ESMTP id NAA02659; Fri, 25 Sep 1998 13:41:47 +0200 (CEST) Received: (from eivind@localhost) by bitbox.follo.net (8.8.8/8.8.6) id NAA08663; Fri, 25 Sep 1998 13:41:41 +0200 (MET DST) Message-ID: <19980925134141.21721@follo.net> Date: Fri, 25 Sep 1998 13:41:41 +0200 From: Eivind Eklund To: obrien@NUXI.com, committers@FreeBSD.ORG Subject: Re: Security and other facilities at WC CDROM - the plan. References: <199809232027.WAA19326@gratis.grondar.za> <19980924001230.B686@keltia.freenix.fr> <19980925042403.A13429@nuxi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.89.1i In-Reply-To: <19980925042403.A13429@nuxi.com>; from David O'Brien on Fri, Sep 25, 1998 at 04:24:03AM -0700 Sender: owner-cvs-all@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, Sep 25, 1998 at 04:24:03AM -0700, David O'Brien wrote: > > As long as the host key doesn't change (it happened some time, generally > > after hardware upgrades :-)), this works pretty well. I still > > Why does that matter? (other than a PITA message and edit of > ~/.ssh/known_hosts) It has never affected me before. The above is the entire required steps. However, for those of us that are paranoid, we need to evaluate whether the change of host key is legitimate or not. This may mean getting in touch with the admins for that machine etc, which can be extrememly inconvenient. Eivind.