Hi,
I am wondering if it is possible to use dnsmasq to store SSHFP records and
then make use of them when using ssh with the VerifyHostKeyDNS=yes option.
I'm able to get the SSHFP into dnsmasq making use of dns-rr, but when I run
ssh I get told that the fingerprint is insecure. I know if I were
Patches applied.
Many thanks.
Cheers,
Simon.
On 09/07/18 17:27, Olivier Gayot wrote:
> The option was already described in the original manual page but was not
> replicated in the french translation.
>
> Reviewed-By: Nicolas Cavallari
> ---
> man/fr/dnsmasq.8 | 7 +++
> 1 file
This generates multiple instance of the DHCP option 121 in the DHCP
reply packet, which isn't strictly legal.
You can include an option 121 with as many routes as you want quite
easily withouyt patching the code.
--dhcp-option=121,127.0.0.1/8,1.2.3.4,192.168.0.0/16,3.4.5.6
Cheers,
Simon.