clarify cloud based use case for hypothetical non-tofu ssh

This commit is contained in:
forest 2021-01-31 02:31:27 -06:00
parent 51721ffdc0
commit cbe658b7ae

View File

@ -317,7 +317,7 @@ Host key verification failed.
</p> </p>
<hr/> <hr/>
<p> <p>
Because of the case for absolute simplicity, I think if anything, Because of the case for absolute simplicity, I think that in a cloud based use-case
it might even make sense to remove the TOFU and make the ssh client even less user friendly; requiring the it might even make sense to remove the TOFU and make the ssh client even less user friendly; requiring the
expected host key to be passed in on every command by default expected host key to be passed in on every command by default
would dramatically increase the security of real-world SSH usage. would dramatically increase the security of real-world SSH usage.