[JIRA] (JENKINS-49504) ssh-slaves-plugin does not honor global /etc/ssh/ssh_known_hosts
Title: Message Title Ivan Fernandez Calvo closed an issue as Duplicate Jenkins / JENKINS-49504 ssh-slaves-plugin does not honor global /etc/ssh/ssh_known_hosts Change By: Ivan Fernandez Calvo Status: Open Closed Resolution: Duplicate Add Comment This message was sent by Atlassian JIRA (v7.3.0#73011-sha1:3c73d0e) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-49504) ssh-slaves-plugin does not honor global /etc/ssh/ssh_known_hosts
Title: Message Title Oleg Nenashev assigned an issue to Unassigned Bulk issue update: The plugin connectivity is still unstable from what I see in this and other reports. Probably the recent patches in 1.24-1.25 caused some extra instability by getting rid of interlocks between agent connection and termination logic. Apparently it impacts some reconnection scenarios due to the race conditions. Unfortunately I do not have capacity to work on the plugin in medium-term. So for now I am unassigning issues from myself. Ivan Fernandez Calvo was very kind to take ownership of the plugin and to handle some workload in it. Probably he will have some capacity to review the backlog I was unable to triage. Jenkins / JENKINS-49504 ssh-slaves-plugin does not honor global /etc/ssh/ssh_known_hosts Change By: Oleg Nenashev Assignee: Oleg Nenashev Add Comment This message was sent by Atlassian JIRA (v7.3.0#73011-sha1:3c73d0e)
[JIRA] (JENKINS-49504) ssh-slaves-plugin does not honor global /etc/ssh/ssh_known_hosts
Title: Message Title Philipp Hahn created an issue Jenkins / JENKINS-49504 ssh-slaves-plugin does not honor global /etc/ssh/ssh_known_hosts Issue Type: Bug Assignee: Oleg Nenashev Components: ssh-slaves-plugin Created: 2018-02-12 13:04 Environment: jenkins 2.46.2 ssh-slaves-plugin 1.25.1 Priority: Minor Reporter: Philipp Hahn src/main/java/hudson/plugins/sshslaves/verifiers/KnownHostsFileKeyVerificationStrategy.java only uses the "per-user" file "~/.ssh/known_hosts", but not the global "/etc/ssh/ssh_known_hosts" files. (we roll out that global file to all our hosts to improve security and to remove the "per-user" burdon to verify each host). As "ssh" does not add the host key to the "per-user" file if it is already in the "global" file, this breaks starting a Jenkins slave per ssh until the keys from the global file are manually copied to the "per-user" file. The ssh-slaves-plugin should also honor the global file (if it exists). Add Comment