<div dir="ltr">In specific instances, I've replaced the built-in ssh with <a href="http://www.psc.edu/index.php/hpn-ssh">http://www.psc.edu/index.php/hpn-ssh</a> to increase sftp/scp throughput between hosts with big pipes.<div>
<br></div><div>I recently had to work through a cron'd rsync+ssh to a round-robin DNS record and added this stanza to ~/.ssh/config:</div><div><br></div><div><div>Host <a href="http://roundrobin.example.com">roundrobin.example.com</a></div>
<div> IdentityFile ~/.ssh/id_rsa.roundrobinrsync</div><div> StrictHostKeyChecking no</div><div> CheckHostIP no</div><div> UserKnownHostsFile=/dev/null</div></div><div><br></div><div>I would not recommend overriding these settings for a wide swath of hosts, ie don't put an asterisk in Host definition. </div>
</div><div class="gmail_extra"><br><br><div class="gmail_quote">On Fri, Jan 24, 2014 at 11:32 AM, Edward Ned Harvey (bblisa4) <span dir="ltr"><<a href="mailto:bblisa4@nedharvey.com" target="_blank">bblisa4@nedharvey.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">> From: bblisa [mailto:<a href="mailto:bblisa-bounces@bblisa.org">bblisa-bounces@bblisa.org</a>] On Behalf Of Alex Aminoff<br>
<div class="im">><br>
> What is the typical way a Mac user uses ssh? Do they use the<br>
> command-line ssh client that comes with the OS, or do they download some<br>
> app analogous to putty on windows?<br>
<br>
</div>I don't know a single person who uses an ssh client other than the built-in ssh.<br>
<div class="im"><br>
<br>
> We plan to renumber all our IP space, which will cause saved ssh host<br>
> keys to become invalid.<br>
<br>
</div>Now is the time to start using DNS. In fact, a long, long time ago was the time to start. If you were using DNS, you wouldn't have this problem. You can renumber to your heart's content, and ssh known_hosts will record "<a href="http://foobar.somedomain.org" target="_blank">foobar.somedomain.org</a>" as the host corresponding to that particular ssh server public key. Renumber away, no problem.<br>
<br>
If you're in the unfortunate situation of NOT using DNS, and for some reason the problem you care about is the IP address in the known_hosts file... Then just use sed on your known_hosts file to replace the old IP with the new IP.<br>
<div class="HOEnZb"><div class="h5"><br>
_______________________________________________<br>
bblisa mailing list<br>
<a href="mailto:bblisa@bblisa.org">bblisa@bblisa.org</a><br>
<a href="http://www.bblisa.org/mailman/listinfo/bblisa" target="_blank">http://www.bblisa.org/mailman/listinfo/bblisa</a><br>
</div></div></blockquote></div><br></div>