Page MenuHomeFreeBSD

FreeBSD ssh client default changes
Needs ReviewPublic

Authored by emaste on Feb 15 2021, 8:30 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Nov 30, 8:28 AM
Unknown Object (File)
Fri, Nov 8, 6:03 PM
Unknown Object (File)
Oct 5 2024, 3:56 PM
Unknown Object (File)
Oct 5 2024, 12:39 PM
Unknown Object (File)
Oct 2 2024, 7:25 PM
Unknown Object (File)
Oct 2 2024, 3:19 PM
Unknown Object (File)
Oct 2 2024, 5:57 AM
Unknown Object (File)
Oct 2 2024, 4:26 AM

Details

Diff Detail

Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

emaste created this revision.
ssh_config
47

Hrm, there's no existing commented out value to change, need to investigate.
See also https://blog.des.no/2013/10/verifyhostkeydns/.

2khramtsov_gmail.com added inline comments.
readconf.c
2244

Should one trust AD bit from a remote resolver? One may configure a 2001:4860:4860::8888 in /etc/resolv.conf. Does FreeBSD installer add "options edns0" if local unbound is selected after install?

emaste added inline comments.
sshd_config
90

See D37411 for this one