Sami Lehtinen <[EMAIL PROTECTED]> writes:
> This is because the rekey-logic doesn't handle changed hostkeys too
> well in the fly (it is a known bug, which will be fixed for the next
> release).
>
> Does the host key change during the connection? When you connect, does
> it complain about a changed hostkey?
No and no.
> : This is clearly a bug in 2.3.0. (a severe one IMHO!)
>
> Yes and no. The rekeying feature improves security, because the
> security and integrity keys are changed once every hour (by default,
> you can change it, or diable it altogether).
Oh, yes. I missed that one. Set RekeyIntervalSeconds to 0, right?
> It is a bug, however, to bomb like you describe if the host key is
> changed during your terminal session. Will be fixed.
So, I believe your rekeying feature introduced a bug to 2.3 even if
the hostkey did _not_ change.
Greetings
Markus
--
Markus Germeier
[EMAIL PROTECTED]
