Hello, I am using openssh-2.5.1.p2. I frequently need to connect to an aliase that is using either round robin DNS, or a load balancing switch, but either way, the host keys change (because there are many machines that answer to this aliase). So the problem is connecting. If I have StrictHostKeyChecking (ssh_config) set to yes, the connection reports the man in the middle attack and closes. If I set this to no, the connection goes through without a warning. What I want is for the ask setting to work. But it doesn't seem to. When I have it set to ask, it behaves the same as if it was set to yes (and the connection fails). Also, when it is set to no, if the user does not have RSA setup and wants to use password authentication, it fails with "Password authentication is disabled to avoid trojan horses." and the connection fails. Is there anything that I can do to: 1) make the 'ask' behave they way it did under ssh 2) prevent the disabling of password authentication when hostkey changes are detected ? Thanks ! Paul [EMAIL PROTECTED]
