Hello,
attached a trivial patch to disable host key checking for localhost.
When using sftp to access tunneled hosts eihter -o HostKeyAlias=hostname
or -o NoHostAuthenticationForLocalhost=yes must be passed to scp/ssh to
avoid the Mitm attack warning.
I chose the second option because passing hostnames to the module would
be inconvinient.
I contacted the author of gnome-vfs-sftp, but got no response, therefore
my messege to this list.
Please let me know what you think of the patch.
regards
Stefan
PS: Please CC: me as I am not on the list.
--
--------------------------------------------------------------------
Stefan Völkel stefan voelkel millenux com
Millenux GmbH mobile: +49.170.79177.17
Lilienthalstraße 2 phone: +49.711.88770.300
70825 Stuttgart-Korntal fax: +49.711.88770.349
-= linux without limits -=- http://linux.zSeries.org/ =-
--- gnome-vfs-sftp-0.1.2/sftp-method.c 2003-02-21 22:22:25.000000000 +0100
+++ sftp-method.c 2004-02-20 18:01:05.000000000 +0100
@@ -843,7 +843,7 @@
GError *error = NULL;
- gchar *args[16];
+ gchar *args[17];
DEBUG (gchar *tmp);
@@ -853,8 +853,9 @@
args[2] = g_strdup ("-oForwardAgent no");
args[3] = g_strdup ("-oClearAllForwardings yes");
args[4] = g_strdup ("-oProtocol 2");
+ args[5] = g_strdup ("-oNoHostAuthenticationForLocalhost yes");
- last_arg = 4;
+ last_arg = 5;
/* Make sure the last few arguments are clear */
for (i = last_arg + 1; i < sizeof (args) / sizeof (const gchar *); ++i)
Attachment:
signature.asc
Description: This is a digitally signed message part