IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-26 00:41:25 -06:00
Code Issues Packages Projects Releases Wiki Activity

Do not skip SSSD known hosts in ipa-client-install --ssh-trust-dns.

Browse Source 
https://fedorahosted.org/freeipa/ticket/3705
This commit is contained in:
Jan Cholasta 2013-06-25 08:41:46 +00:00 committed by Martin Kosek
parent 093fa2daa0
commit 736dd0fcd6
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ipa-client/ipa-install/ipa-client-install
View File

@ -1212,12 +1212,12 @@ def configure_ssh_config(fstore, options):
'PubkeyAuthentication': 'yes', 'PubkeyAuthentication': 'yes',
} }
if options.sssd and file_exists(SSH_PROXYCOMMAND):
changes['ProxyCommand'] = '%s -p %%p %%h' % SSH_PROXYCOMMAND
changes['GlobalKnownHostsFile'] = SSH_KNOWNHOSTSFILE
if options.trust_sshfp: if options.trust_sshfp:
changes['VerifyHostKeyDNS'] = 'yes' changes['VerifyHostKeyDNS'] = 'yes'
changes['HostKeyAlgorithms'] = 'ssh-rsa,ssh-dss' changes['HostKeyAlgorithms'] = 'ssh-rsa,ssh-dss'
elif options.sssd and file_exists(SSH_PROXYCOMMAND):
changes['ProxyCommand'] = '%s -p %%p %%h' % SSH_PROXYCOMMAND
changes['GlobalKnownHostsFile'] = SSH_KNOWNHOSTSFILE
change_ssh_config(ssh_config, changes, ['Host']) change_ssh_config(ssh_config, changes, ['Host'])
root_logger.info('Configured %s', ssh_config) root_logger.info('Configured %s', ssh_config)