|
|||
hashing known hosts file
Hi folks
What precaustions should I take prior to "hashing" known host BY: changine entry in ssh_config "HashKnowHosts yes" for future entries in hosts file .OR. at command line entering "ssh-keygen -H" for existing entries in hosts file reading suggests i should do both but wasn't quite sure what else that may effect. would like not to go back through multiple servers and re-inventing the hosts files. as usual thanks in advance...... |
|
|||
Hashing the .ssh/known_hosts file will save the old unhashed version:
Code:
Code:
To prevent new hosts being added with their unhashed values you should set HashKnownHosts to yes in ssh_config. So it is not '.OR.' but '.AND.'
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
NIST names Keccak hashing algorithm as SHA-3 | J65nko | News | 0 | 3rd October 2012 09:24 PM |
hosts.allow and hosts.deny | amrogers3 | OpenBSD Security | 10 | 10th November 2011 11:28 AM |
German hacker uses rented computing to crack hashing algorithm | J65nko | News | 0 | 18th November 2010 07:31 PM |
LLVM milestone reached - Clang compiler self-hosts | J65nko | News | 0 | 5th February 2010 03:48 PM |
Discovering SSH versions of compromised hosts with nc(1) | J65nko | General software and network | 1 | 31st December 2009 11:01 AM |