On Fri, 16 May 2025, to...@tuxteam.de wrote: > On Fri, May 16, 2025 at 04:09:10PM +0000, fxkl4...@protonmail.com wrote: > > [...] > >> as an aside >> in known_hosts there are many key fingerprints with no host identification >> is there a way to identify what host the fingerprint is for > > The file format is described in man 8 sshd. > > Those with "no host identification" most probably just have a hashed host > name: the idea is that an attacker who gets access to your user account > doesn't get a neat list of which hosts to try next. > > There is an (sshd, I think) option to change that.
i see Alternately, hostnames may be stored in a hashed form which hides host names and addresses should the file's contents be disclosed. Hashed hostnames start with a ‘|’ character. Only one hashed hostname may appear on a single line and none of the above negation or wildcard operators may be applied. i don't see how to change it
