[Gt-eos] Possible security concern with gsissh

Dave Dykstra dwd at fnal.gov
Tue Apr 10 19:00:31 CEST 2018


I just noticed on a host that we use gsi-openssh-server that the host
certificate does not include a SAN of the public DNS alias of the
machine (i.e. oasis-login-itb.opensciencegrid.org).  Isn't that a
security concern?  Normally clients are supposed to verify that.

Dave


More information about the Gt-eos mailing list