On Mon, 26 Oct 2009 22:42:59 +0100 Robert Millan <[email protected]> wrote:
> On Mon, Oct 26, 2009 at 01:28:50PM +1030, Karl Goetz wrote: > > lsh client > > wanting me to manually authorise the server? wtf. just no. > > Depending on what you mean by that, it could be a good thing. OpenSSH > makes it too easy for user to accept a server key without verifiing > it, leading to a harmful false sense of security. Could be yes. Could also be an unnecessary PITA, since I can see the host its connecting to from my seat (And installed it 24 hours before hand). This is a case where "Accept key foo? yes/no" is appropriate. kk -- Karl Goetz, (Kamping_Kaiser / VK5FOSS) Debian contributor / gNewSense Maintainer http://www.kgoetz.id.au No, I won't join your social networking group
signature.asc
Description: PGP signature
_______________________________________________ gNewSense-dev mailing list [email protected] http://lists.nongnu.org/mailman/listinfo/gnewsense-dev
