Bazaar

want an option to ssh using facilities to control knownhosts

Bug #357510 reported by Robert Collins
2
Affects Status Importance Assigned to Milestone
Bazaar
Confirmed
Low
Unassigned

Bug Description

It would be nice when talking to ec2 instances, or other dynamically
created hosts to not have to worry about known_hosts; there are various
tricks that can be done with different ssh clients. We should have a
means when getting an ssh transport to specify that this should be done.

 affects bzr

Revision history for this message
Martin Pool (mbp) wrote :

I'm not really convinced this belongs inside bzr; it's more user policy than something we know about.

For the user, it should be possible to set something like this in ~/.ssh/config

Host *.ec2.amazonaws.com
   StrictHostKeyChecking no

(domain name may be wrong, untested.)

Changed in bzr:
importance: Undecided → Low
status: New → Confirmed
summary: - no way to control knownhosts
+ option to SSH transport to turn off host key checking
summary: - option to SSH transport to turn off host key checking
+ want an option to SSH transport to turn off host key checking
Revision history for this message
Robert Collins (lifeless) wrote : Re: [Bug 357510] Re: no way to control knownhosts

On Thu, 2009-04-09 at 04:39 +0000, Martin Pool wrote:
> I'm not really convinced this belongs inside bzr; it's more user policy
> than something we know about.

Its code policy when code knows, so there is no reason not to put it in
bzr.

> For the user, it should be possible to set something like this in
> ~/.ssh/config
>
> Host *.ec2.amazonaws.com
> StrictHostKeyChecking no
>
> (domain name may be wrong, untested.)

No, this doesn't work. You need command line options to ssh to make it
use /dev/null as the hostkey file.

Also this isn't for the 'ssh transport', its for

 summary want an option to ssh using facilities to control knownhosts

Revision history for this message
Robert Collins (lifeless) wrote :

On Thu, 2009-04-09 at 04:39 +0000, Martin Pool wrote:
> I'm not really convinced this belongs inside bzr; it's more user policy
> than something we know about.

Its code policy when code knows, so there is no reason not to put it in
bzr.

> For the user, it should be possible to set something like this in
> ~/.ssh/config
>
> Host *.ec2.amazonaws.com
> StrictHostKeyChecking no
>
> (domain name may be wrong, untested.)

No, this doesn't work. You need command line options to ssh to make it
use /dev/null as the hostkey file.

Also this isn't for the 'ssh transport', its for

 summary "want an option to ssh using facilities to control knownhosts"

summary: - want an option to SSH transport to turn off host key checking
+ want an option to ssh using facilities to control knownhosts
Jelmer Vernooij (jelmer)
tags: added: ssh
Jelmer Vernooij (jelmer)
tags: added: check-for-breezy
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.