[rhelv6-beta-list] Do you think to enable VisualHostKey of OpenSSH by default is a good idea?
Kirby Zhou
kirbyzhou at sohu-rd.com
Sat Jun 19 14:57:42 UTC 2010
Do you think to enable VisualHostKey of OpenSSH by default is a good idea?
VisualHostKey is a new feature of OpenSSH introduced by version 5.1.
It seems very useful for users who need reinstall system sometime.
Visual fingerprinnt display is controlled by a new
ssh_config(5) option "VisualHostKey". The intent is to render
SSH host keys in a visual form that is amenable to easy recall and
rejection of changed host keys. This technique inspired by the
graphical hash visualisation schemes known as "random art[*]", and
by Dan Kaminsky's musings at 23C3 in Berlin.
For example:
~]# ssh 10.12.10.226
The authenticity of host '10.12.10.226 (10.12.10.226)' can't be established.
RSA key fingerprint is 9b:2a:c2:2d:41:24:b1:92:95:e6:34:48:4d:01:19:57.
+--[ RSA 2048]----+
|o*B=oE |
|o=B. |
|+* . |
|. o |
| . S |
| . o |
| . o o |
| + o . |
| o .. |
+-----------------+
Are you sure you want to continue connecting (yes/no)?
Regards
Kirby Zhou
More information about the rhelv6-beta-list
mailing list