From a7acf091a1e9839a5c1d1b113756e6c19bb5cf5e Mon Sep 17 00:00:00 2001 From: Michael Scherer Date: Thu, 9 Apr 2020 12:15:21 +0000 Subject: [PATCH] Disable hostkey verification Since that's run by cron, we have to accept the key. Given that a MITM of pagure would just enable to intercept nothing of value (we are using public keys, the data to be commited can be regenerated trivially and would just concern translation), disabling StrictHostKeyChecking for that user is IMHO not a security risk. --- roles/fedora-docs/translation/files/ssh_config | 1 + 1 file changed, 1 insertion(+) diff --git a/roles/fedora-docs/translation/files/ssh_config b/roles/fedora-docs/translation/files/ssh_config index 21d4437145..a772f9cc47 100644 --- a/roles/fedora-docs/translation/files/ssh_config +++ b/roles/fedora-docs/translation/files/ssh_config @@ -1,2 +1,3 @@ Host pagure.io IdentityFile ~/.ssh/id_rsa_docs_trans + StrictHostKeyChecking no