all repos — nixfiles @ 62e1af7c507917673ed5299478c27d341089a544

System and user configuration, managed by nix and home-manager

ssh: check SSHFP DNS entries for unknown SSH servers
Alan Pearce alan@alanpearce.eu
Sat, 12 Aug 2023 15:23:40 +0200
commit

62e1af7c507917673ed5299478c27d341089a544

parent

09da71a814a82de08b5bd058b6bb80a948a43a02

1 files changed, 3 insertions(+), 0 deletions(-)

jump to
M user/settings/ssh.nixuser/settings/ssh.nix
@@ -10,6 +10,9 @@ controlMaster = "auto";     controlPersist = "10m";
     hashKnownHosts = true;
     serverAliveInterval = 15;
+    extraConfig = ''
+      VerifyHostKeyDNS ask
+    '';
     includes = [
       "local.ssh_config"
     ];