Page MenuHomeVyOS Platform

Make VyOS interactively ask whether user trust remote host SSH fingerprint
Open, Requires assessmentPublic

Description

When configuring Remote Archive, user cannot connect to the remote server because the SSH public key of the remote server is not trusted (its fingerprint is not listed yet in local VyOS' ~/.ssh/known_hosts file).

Example:
https://vyos.slack.com/archives/C976FK9S6/p1589612226329900

So we have just documented this workaround in order to temporarily solve the problem:
https://github.com/vyos/vyos-documentation/pull/252
(currently not merged yet)

But it would be good to properly solve it. Maybe by making VyOS show the fingerprint of the remote host and interactively ask the user whether they trust it or not.

Details

Difficulty level
Unknown (require assessment)
Version
VyOS 1.3 Rolling
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)

Event Timeline

pasik added a subscriber: pasik.May 19 2020, 12:04 PM
s.lorente changed Version from VyOS 1.2.5epa1, VyOS 1.3 Rolling to VyOS 1.3 Rolling.May 20 2020, 7:06 PM