> >still, the last part of each public key (i'm not sure if it is required > >or optional) is usually the user and host machine the key was generated > >on... but everything after the @ sign disappears with this patch. > > i think it's optional.
appears so.
> >hopefully it's still a valid known_hosts file, despite that glitch.
>
> i don't think so.
> it would be o.k. if there was nothing following the "=" sign.
from the sshd man page, section SSH_KNOWN_HOSTS FILE FORMAT:
Bits, exponent, and modulus are taken directly from the RSA host
key;
they can be obtained, e.g., from /etc/ssh/ssh_host_key.pub. The
optional
comment field continues to the end of the line, and is not used.
but i still don't really understand it.
after trying it out various ways(without the [EMAIL PROTECTED], with just
root, with a several words of gibberish), i think everything following
the = is basically treated as a comment, and is optional, as i was able
to ssh with all sorts of random junk after it.
so, alternately, the patch could instead just grab the first two parts
of the key from the pubkey variable using something like:
pubkey="`cat /etc/ssh/ssh_host_${type}_key.pub | tail -n 1 | awk '{ print $1\"
\"$2}'`"
live well,
vagrant
signature.asc
Description: Digital signature
