You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
While blink supports SSH certificates on authentication keys. It appears to not support SSH certificates for host keys (known_hosts). With openssh you can place a CA in your known_hosts starting with @cert-authority <domain wildcard or *>
I tried editing the .ssh/known_hosts file in blink to add the @cert-authority but it was ignored.
Then any host with a certificate signed host key can login without having the specific host key in the known_hosts, and without the 'cache host key' prompt. All explained in detail at https://goteleport.com/blog/how-to-ssh-properly/
The text was updated successfully, but these errors were encountered:
erbenson
added
the
bug
Bug that's either related to Blink Shell or prevents the user to use the app in normal conditions.
label
Dec 19, 2022
carloscabanero
added
feature
Feature requested by users
and removed
bug
Bug that's either related to Blink Shell or prevents the user to use the app in normal conditions.
labels
Mar 23, 2023
While blink supports SSH certificates on authentication keys. It appears to not support SSH certificates for host keys (known_hosts). With openssh you can place a CA in your known_hosts starting with @cert-authority <domain wildcard or *>
I tried editing the .ssh/known_hosts file in blink to add the @cert-authority but it was ignored.
Then any host with a certificate signed host key can login without having the specific host key in the known_hosts, and without the 'cache host key' prompt. All explained in detail at https://goteleport.com/blog/how-to-ssh-properly/
The text was updated successfully, but these errors were encountered: