[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Duplicity-talk] Why -oUserKnownHostsFile=/dev/null
From: |
Gabriel Ambuehl |
Subject: |
Re: [Duplicity-talk] Why -oUserKnownHostsFile=/dev/null |
Date: |
Fri, 24 Aug 2007 15:21:48 +0200 |
User-agent: |
KMail/1.9.6 (enterprise 0.20070508.662491) |
On Thursday 23 August 2007 22:26:00 Peter Schuller wrote:
> How about an --ssh-strict-checking switch which turns this on again, as
> well as defaulting to it on when running with --no-encryption?
>
> I can buy the convenience default as long as the backups are encrypted,
> because MITM attacks will not mean information disclosure. But without
> encryption it really feels overly risky.
Actually, you'd probably still want to get the check so that you don't think
you've been doing backups only to figure out that you weren't (or rather not
to a place you can get back your data from)...
signature.asc
Description: This is a digitally signed message part.