On Tue, 17 May 2011, Kevin Chadwick wrote: > If the client has no known_hosts files and only an RSA key. Only the > ecdsa fingerprint is given to be confirmed before connection. Should > administrators make sure the ecdsa fingerprint is always given out or > posted even to already issued RSA key users or should the RSA > fingerprint or the fingerprint matching the key to be used be shown in > the ssh dialog?
If you are using recent OpenSSH (5.7+) then ssh will automatically prefer known host keys when connecting, so you should never be asked to learn a new hostkey type unless the old ones are no longer offered. If you prefer to use ECDSA keys, then you may like to copy them manually from the server or use ssh-keyscan (and check the fingerprints). -d
