Comments (7)
Yes definitely!
I guess our options are:
- propose to add the fingeprint to the known hosts (I think Paramiko has some API for this?)
- propose to switch on the ignore flag in settings
from rmview.
I think I am in favor of proposing adding an (optional?) ignore flag to the settings since we probably shouldn't edit the user's known hosts
from rmview.
Also as it turns out, Paramiko requires the fingerprint to be present in known hosts to connect. I.e. the first time install flow in #14 wouldn't work with a "true" fresh install without extra handling
from rmview.
AH! I did add the insecure_auto_add_host
setting for this very purpose, so that's already an option.
But I forgot to document it.
The point of adding to known hosts is to detect changes of fingerprint that may be caused by a man-in-the-middle attack. This is unlikely to happen unless you are a target, and would be fine to ignore in trusted networks.
But I would not want to have an insecure method as a default.
This is why the setting is called insecure
. On the other hand, if you add it to the known hosts you can be warned only when something changed, and you'll know if it is because you just updated the tablet, in which case it is safe to overwrite the old fingerprint. Makes sense?
I guess an error message explaining some of this would be very helpful. I'll put it down as something to add.
from rmview.
Commit 50a1d07 added documentation for the new setting
from rmview.
That's a good argument for modifying the known hosts. I suppose we could have some nice yes/no dialogue box to answer the fingerprint key thing and update it although I'm not so familiar with QT
from rmview.
Commit 4ebdf58 now handles this case with prompts to the user.
Modifying known hosts is a bit more involved, I prefer to suggest using ssh manually and follow instructions.
Thanks for the feedback!
from rmview.
Related Issues (20)
- Strange color rendering HOT 5
- Turning page time HOT 3
- rmview hung on authentication HOT 15
- [FR] Named ssh connections
- configparser.DuplicateOptionError after Update 2.14 HOT 4
- Running on Linux HOT 3
- Authenticated but not sharing HOT 1
- Connection error with fw 2.15.0.1052 HOT 3
- rm 3.0 compatibility issues? Screen view not functioning HOT 43
- Couldn't listen on any:5901: [Errno 98] Address already in use.
- rmview screen doesn't respond, only show the trail HOT 1
- Update tooling HOT 2
- add fullscreen mode HOT 3
- RM Version 3.6 - libcrypto.so.1.1 not found HOT 5
- Recommend installation using Pipx
- Issues connecting HOT 1
- Screen stuck on "Connecting to reMarkable..." but red-dot is there, seems to be stuck on authentication HOT 7
- VNcClient auth failed, currently ignored HOT 2
- libGL error: MESA-LOADER: failed to retrieve device information HOT 4
- Unable to screen share with os version 3.11.2.5 HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from rmview.