On Mon, Jul 6, 2026 at 12:20 PM Andy Smith <[email protected]> wrote:
>
> On Sun, Jul 05, 2026 at 09:28:57PM +0100, Chris Green wrote:
> >     StrictHostKeyChecking no
> >     UserKnownHostsFile=/dev/null
> >
> > Like quite a few people nowadays I find it more of a nusiance than a
> > help.
>
> lolwat
>
> In a thread where you tell us you've been confused about which host you
> are trying to log in to, and if you had been trying a password you would
> have been typing it into someone else's server (!), you disable host key
> checking because "like quite a few people nowadays I find it more of a
> nuisance"
>
> Please do spread the message to all these other wrong people you know!

++.  I almost looked up the reference for the precursor to
StrictHostKeyChecking, but decided against it.  But since you took the
time I should, too.  Here it is:

"Perspectives: Improving SSH-style Host Authentication with Multi-Path
Probing”, Dan Wendlandt, David Anderson and Adrian Perrig, Proceedings
of the USENIX Annual Technical Conference (USENIX ‘08), June 2008,
p.321.

The paper can be found at
<https://www.cs.cmu.edu/~dga/papers/perspectives-usenix2008/>.

Jeff

Reply via email to