FliegenKLATSCH commented on issue #119: Add support for openssh host key certificates URL: https://github.com/apache/mina-sshd/pull/119#issuecomment-615428495 > * Bad certificate code behavior - make sure that if the certificate is invalid then code indeed disconnects as required OpenSSH actually does a fallback to the plain host key, maybe we should do the same instead of aborting the connection if the certificate is invalid. Makes especially sense if the certificate is expired, you still want to be able to connect.. > Certificate invalid: name is not a listed principal debug1: No matching CA found. Retry with plain key I am currently on the unit tests, having some issues with RSA key mismatch exception... 512 vs 256 .. need to investigate further...
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
