[SOLVED] Host checking disabled in OpenSSH

RankoKohime · 2016-02-19 08:57:02

At some point in the past, when I was loading new distros on test machines on a weekly if not more frequent basis I stuck a rule in my ~/.ssh/config to NOT do strict host key checking, and to use /dev/null for known hosts, ONLY on hosts in the 192.168.*.* range. As I trusted the subnet, I didn't consider this a big security concern.

I noticed recently, though, that ssh is not doing host key checking for remote servers, either, giving me the message that the server is being added to the known hosts file. I subsequently removed the entire line about local servers from my config, but this did not change anything. I've also moved my entire .ssh folder, still nothing. My /etc/ssh/ssh_config has not been touched since it was installed with the package, and every single option is commented out.

Anyone know why this might be occurring? I can provide more details if needed.

PasteBin Log

Last edited by RankoKohime (2016-02-20 13:59:45)

x33a · 2016-02-19 09:14:04

Can you give the full ssh command that you use to connect to one of the remote servers.

Also, what's the output of

type ssh

RankoKohime · 2016-02-20 11:01:55

You ever have one of those moments when you feel really, really dumb? Yeah...

ssh is an alias for ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no

x33a · 2016-02-20 12:21:18

RankoKohime wrote:

You ever have one of those moments when you feel really, really dumb? Yeah...
ssh is an alias for ssh -o UserKnownHostsFile=/dev/null -o StrictHostKeyChecking=no

I suspected as much

Please mark the thread as solved.

Arch Linux

#1 2016-02-19 08:57:02

[SOLVED] Host checking disabled in OpenSSH

#2 2016-02-19 09:14:04

Re: [SOLVED] Host checking disabled in OpenSSH

#3 2016-02-20 11:01:55

Re: [SOLVED] Host checking disabled in OpenSSH

#4 2016-02-20 12:21:18

Re: [SOLVED] Host checking disabled in OpenSSH

Board footer