Skip Menu |

This queue is for tickets about the Net-SFTP CPAN distribution.

Report information
The Basics
Id: 60475
Status: new
Priority: 0/
Queue: Net-SFTP
People
Owner: Nobody in particular
Requestors: pklosek [...] gmail.com
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: (no value)

History Show all quoted text
  Wed Aug 18 13:10:49 2010 pklosek [...] gmail.com - Ticket created
Subject: Known hosts problem
Date: Wed, 18 Aug 2010 19:10:18 +0200
To: bug-Net-SFTP [...] rt.cpan.org
From: Paweł Kłósek <pklosek [...] gmail.com>
When host keys of the server are changed Net::SFTP simply adds next key to the .ssh/known_hosts2 and allows to connect. Failsafe would be to raise an error and disallow a connection. This is a security bug. Best regards, pklosek