Bug 780

Summary: ssh host-key hash should match ssh-add/ssh-keygen hash
Product: Portable OpenSSH Reporter: Konrad Rosenbaum <konrad.ssh>
Component: sshAssignee: OpenSSH Bugzilla mailing list <openssh-bugs>
Status: CLOSED WORKSFORME    
Severity: enhancement    
Priority: P2    
Version: -current   
Hardware: ix86   
OS: Linux   

Description Konrad Rosenbaum 2004-01-03 11:44:21 AEDT
Distro: Debian 
SSH: 3.4 
 
1) when running "ssh-keygen -l -f .ssh/known_hosts" the reported hash value is 
different from the hash value ssh asks for when connecting to the system for 
the first time. This makes it very difficult to hand out hashes to new users 
for comparison. 
 
2) ssh should have an option to display the fingerprints of all used keys in 
order to better be able to trace them.
Comment 1 Ben Lindstrom 2004-01-03 11:50:27 AEDT
I don't follow:

$ ssh-keygen -l -f known_hosts
[..]
1024 22:50:97:bc:73:65:1f:b7:77:17:f4:75:a7:b1:9a:9e localhost
[..]

ssh ::1
The authenticity of host '::1 (::1)' can't be established.
RSA key fingerprint is 22:50:97:bc:73:65:1f:b7:77:17:f4:75:a7:b1:9a:9e.
Are you sure you want to continue connecting (yes/no)?


Please look at a NEWER version 3.4 is rather old.

- Ben
Comment 2 Damien Miller 2004-01-22 21:07:57 AEDT
I can't replicate this with the current version either. Closing.
Comment 3 Damien Miller 2004-04-14 12:24:20 AEST
Mass change of RESOLVED bugs to CLOSED