PuTTY bug hostkey-rekey

Home | Licence | FAQ | Docs | Download | Keys | Links
Mirrors | Updates | Feedback | Changes | Wishlist | Team

summary: If the host key isn't saved, rekeys cause another warning
class: bug: This is clearly an actual problem we want fixed.
difficulty: fun: Just needs tuits, and not many of them.
priority: medium: This should be fixed one day.
present-in: 0.58

There's currently undesirable behaviour if you answer "accept once" for a host key at startup and then leave the connection open for long enough to trigger a rekey: since the host key has only been accepted once, the confirmation message is put up again, which is pretty nasty (especially in the command-line tools). Certainly at the very least we should treat "accept once" on a host key to mean accept for the whole of a session rather than for a single KEX; additionally, we probably ought to think about some sort of sensible behaviour if a different host key to that we originally accepted is used at rekey time, or if the key in the client's cache has changed.

Audit trail for this bug.

If you want to comment on this web site, see the Feedback page.
(last revision of this bug record was at 2008-09-28 19:02:56 +0100)