|
|
|
|
|
|
by lxgr
1186 days ago
|
|
|
I just tested it and looked at the code briefly; the client fortunately does seem to remove all keys not provided by the server: https://github.com/openssh/openssh-portable/blob/36c6c3eff5e... It seems like at least a `known_hosts` compromise would be "self-healing" after connecting to the legitimate github.com server once. |
|
|