You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is your feature request related to a problem? Please describe.
Known hosts handling is a bit cumbersome. When you run a task for the first time, it is likely to fail with a "Host key verification failed" error because the key of the system you connect to is not known yet. The same issue will occur when e.g. the IP address of a known host has changed. The only way to add new keys to the list of known host is to either add it manually to /root/.ssh/known_hosts or make an ssh connection through ssh manually. Either way, it can not be done through the web UI.
Describe the solution you'd like
Ideally it should:
Perform a test connection when creating a new task or when altering an existing one. Or at least offer to perform a test of not done automatically. This to retrieve the host key.
Offer to add/accept new keys through the UI and store/replace them in the known_hosts file
Describe alternatives you've considered
An alternative would be to accept every key automatically, but I'm less comfortable with that from a security point of view. It could be an optional service though, specifically enabled in the settings.
The text was updated successfully, but these errors were encountered:
You don't have to, and I'm not saying you should, but you can change the known host file manually.
You either get the key added by making a connection to the other machine, which provokes the question if you want to add it, or you add the key manually for whatever reason.
I did it in the past to change e.g. the hashed host name to a non-hashed one and to quickly migrate known keys.
The manual editing is not relevant for the issue though.
My use case is adding new rsync tasks to new/unknown hosts with a connection using ssh/private keys. You can add the tasks, but they will fail later on when the scheduler kicks in, because it won't be able to make a connection due to the host key being unknown.
Ideally it should offer to make a test connection when you create a new task or change the destination of an existing one. Followed by adding the key to the known host file.
Some additional 'intelligence' could be added, by looking at the destination host address and checking if that address in already used by other tasks. Though this isn't necessarily reliable, since you could define multiple new tasks in one go without importing the key. For this to work properly, OMV would need to check the actual (non-hashed) known host file, or maintain a double list, to see of the address is already listed.
Is your feature request related to a problem? Please describe.
Known hosts handling is a bit cumbersome. When you run a task for the first time, it is likely to fail with a "Host key verification failed" error because the key of the system you connect to is not known yet. The same issue will occur when e.g. the IP address of a known host has changed. The only way to add new keys to the list of known host is to either add it manually to
/root/.ssh/known_hosts
or make an ssh connection through ssh manually. Either way, it can not be done through the web UI.Describe the solution you'd like
Ideally it should:
Describe alternatives you've considered
An alternative would be to accept every key automatically, but I'm less comfortable with that from a security point of view. It could be an optional service though, specifically enabled in the settings.
The text was updated successfully, but these errors were encountered: