On 23/10/18 7:28 am, Wolfgang S. Rupprecht wrote:
Damien Miller <djm@xxxxxxxxxxx> writes:
We don't plan to remove this check. Accidental key exposure is still an
unfortunately common problem and, while this check isn't perfect, I'm
pretty sure that it avoids enough real-world misconfiguration to
justify it's continued existence.
Maybe the check could have a configuration option to disable it?
+1. It's rude of SSH to refuse to use the key it was told to use. A
warning is acceptable, as is an option to avoid any kerfuffle.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev