[WAGON-426] Fingerprints loss in known_hosts - ASF JIRA

Details

Type: Bug
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 2.8
Fix Version/s: 2.12
Component/s: wagon-ssh
Labels:
None

Flags:

Patch

Description

Currently, when adding new fingerprints the whole known_hosts file is rewritten from the loaded fingerprints.
But only fingerprints with a compatible algorithm (from jsch point of view) are kept: for example, all "ecdsa-sha2-nistp256" are lost!

Issue Links

is duplicated by

WAGON-436 wagon-ssh kills ecdsa entries in known_hosts

Closed

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Maxime Robert added a comment - 04/Dec/14 12:00

Pull request: https://github.com/apache/maven-wagon/pull/16

Show

Maxime Robert added a comment - 04/Dec/14 12:00 Pull request: https://github.com/apache/maven-wagon/pull/16

Hide

Permalink

Dan Tran added a comment - 20/Sep/15 05:06

fixed at https://git1-us-west.apache.org/repos/asf?p=maven-wagon.git;a=commit;h=0eed00cf

Show

Dan Tran added a comment - 20/Sep/15 05:06 fixed at https://git1-us-west.apache.org/repos/asf?p=maven-wagon.git;a=commit;h=0eed00cf

Hide

Permalink

Thorsten Glaser added a comment - 28/Apr/17 12:55

Or, as a workaround, put this…

Host *
    VisualHostKey no
    HashKnownHosts no
    HostKeyAlgorithms ssh-rsa

… in /etc/ssh/ssh_config right from the start.
It’s better anyway, IMHO.

Show

Thorsten Glaser added a comment - 28/Apr/17 12:55 Or, as a workaround, put this… Host * VisualHostKey no HashKnownHosts no HostKeyAlgorithms ssh-rsa … in /etc/ssh/ssh_config right from the start. It’s better anyway, IMHO.

People

Assignee:

Dan Tran

Reporter:

Maxime Robert

Votes:

1 Vote for this issue

Watchers:

5 Start watching this issue

Dates

Created:

04/Dec/14 12:00

Updated:

28/Apr/17 12:55

Resolved:

20/Sep/15 05:06

Development

Agile

View on Board