Hi, I think I've figured out why we're sometimes seeing hostkey verification problems -- it's happening when a server has both a DSA and an RSA hostkey, and you've already got one, but not both of them in your ~/.ssh/known_hosts from using openssh.
Net-SSH comes along and happens to get the other one, and the logic is such that when we already have a key that matches on host, ip and port, but doesn't match on type, we report a mismatch rather than just adding the key. If the logic in host-key-verifier.rb's verify method was adjusted to just add the new key, rather than reporting a verify fail, that would be more like how openssh behaves (it actually points out that you have the "other" key). Patch attached - tested on Linux only though. Chris. --~--~---------~--~----~------------~-------~--~----~ To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/capistrano -~----------~----~----~----~------~----~------~--~---
host-key-verifier.diff
Description: Binary data
