-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hi all, As of right now, the ssh known_hosts file has been basically rewritten to use SSH CA certificates. The actual SSH keys for our servers should not have changed, but the known_hosts file has been shortened signifcantly. Do note that for some servers (specifically cloud), might have now switched from their ECDSA to RSA keys, which means that if you only had the host-specific known_hosts line, you might need to add the CA. You should be able to replace your entire ~/.ssh/known_hosts for Fedora with https://admin.fedoraproject.org/ssh_known_hosts . Please let me know if you find any hosts that don't work yet, as they should just need the hostname or domain in the list. Patrick -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJZlKCOAAoJEIZXmA2atR5Qw8MQAKqTrC1s8sMD6ujKPMIKNDrD aacmoyVIXq2gcvM/C4J/wp8yemIAXEv410xJ7+SP9fOcC49oThjqVca5pAq/Y9nS x4HWCDUNN4aQptwGOA2cwbjwopc44ClLV/oKW5NA1QEiSEfro5Op1/PM7n4iCMs4 3JWX9pSERVzuU52ewYzOubYYaaDpfOx49FW+LfmhZmFDj+NJIYet/USqmXFdDvLZ iVpWCVZ/k6DmVudofwTwa1iTgbxlx3NK6NaGHBV1D1saBg5qmUOx2g6KZlT78XH2 8SgioFZ9KYGahtDAP251BIejfHFR52/A7CBMZutN+JKriYaSRKbJZywQS5pzzz/q ay6qGs3qflSF7mGkpbpyzkFi96kFy2rHOhdnXb237kROCwSqAXRchpAYLPhf5uaZ BNPy0EPylbTBDsNff2uucCMa+BpErysKrA8R5TIt/7WdmzMBZlks0xwOhx5C9pJh Jaucy309j1GAXh0cNlMxqjuVAhrYoLbGygevFJTd++m5vrShqNfUvUV23oFwOcJd U1bjEax0GzJLz8egW0b5RyN/9TCfmEyPZ1IEsRpyKdfgeHn+i5OmyNNnIdgtarEd kzm6liilcEo+PIwGtjM5LuQLGoz8k0KlZl9wAEO9lEg8JdMqxK0ta9gjFs4QO5MK cE7/fpE6IpIfjS2kPtVV =yULk -----END PGP SIGNATURE----- _______________________________________________ infrastructure mailing list -- infrastructure@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to infrastructure-leave@xxxxxxxxxxxxxxxxxxxxxxx
