Bug#572049: please support dnssec for sshfp lookups

Colin Watson
Mon, 01 Mar 2010 02:33:19 -0800

On Mon, Mar 01, 2010 at 11:01:11AM +0100, Peter Palfrader wrote:
> now that eglibc supports RES_USE_DNSSEC in experimental (cf #569592),
> the version which - AIUI - should eventually end up in squeeze, it would
> be nice if Debian's ssh client could make use of that when resolving a
> host's sshfp record.
> 
> Fedora has a small patch against openssh's dns code at
> https://cvs.fedoraproject.org/viewvc/F-12/openssh/openssh-5.2p1-edns.patch?revision=1.1&view=markup


Thanks.  I've mentioned this in
https://bugzilla.mindrot.org/show_bug.cgi?id=1320 to see what upstream
says.

-- 
Colin Watson                                       [cjwat...@debian.org]



-- 
To UNSUBSCRIBE, email to debian-ssh-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: http://lists.debian.org/20100301102656.gu4...@riva.ucam.org

Reply via email to