Bug 1198

Summary: ssh associates the host identification to just IP/hostname , and it should also include remote port.
Product: Portable OpenSSH Reporter: Jose Ildefonso Camargo Tolosa <ildefonso_camargo>
Component: sshAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED DUPLICATE    
Severity: enhancement    
Priority: P2    
Version: 4.3p2   
Hardware: All   
OS: Linux   

Description Jose Ildefonso Camargo Tolosa 2006-06-20 02:39:31 AEST 
Hi!

I administer three servers wich are behind one firewall with just one IP, so I have port redirection to each server in different ports, and thus, when I connect to each server I always receive the warning regarding the changed host key.

I think that the host key should be associated with the tuple IP:port or hostname:port, or at least have an option de allow it.

Thanks in advance,

Ildefonso Camargo.
Comment 1 Darren Tucker 2006-06-20 09:32:26 AEST 
For a patch see bug #910 (which I'm marking this one a duplicate of).  Please test either patch #1131 or #1132 and report results.

Alternatively you can do something like this in your ssh_config or ~/.ssh/config files:

Host hosta
    Hostname firewall.example.com
    Port 1234
    HostKeyAlias hosta.example.com

Host hostb
    Hostname firewall.example.com
    Port 1235
    HostKeyAlias hostb


*** This bug has been marked as a duplicate of bug 910 ***
Comment 2 Darren Tucker 2006-10-07 11:45:18 AEST 
Change all RESOLVED bug to CLOSED with the exception of the ones fixed post-4.4.