SSH known_hosts config

Fetch the host public keys from each node, combine them all and write to the system-wide ssh known hosts. The alternative of disabling host key verification is vulnerable to a MITM attack. Change-Id: Ib572b5910720b1991812256e68c975f7fbe2239c (cherry picked from commit 7d3552a105ad5aa62cad0998c11df5ec6bd06ed6)
author: Oliver Walsh <owalsh@redhat.com> 2017-03-24 14:35:09 +0000
committer: James Slagle <jslagle@redhat.com> 2017-04-20 22:16:35 +0000
commit: 68d7196d472b5195c19e871e960996e89a7bcb9c (patch)
tree: 83cd2872cf542106ea19a343d1c5217e18287f7d /releasenotes
parent: 33e53fd87784914d010411ec85d040623e4c2617 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/releasenotes/notes/ssh_known_hosts-287563590632d1aa.yaml b/releasenotes/notes/ssh_known_hosts-287563590632d1aa.yaml
new file mode 100644
index 00000000..8b533b1a
--- /dev/null
+++ b/releasenotes/notes/ssh_known_hosts-287563590632d1aa.yaml
@@ -0,0 +1,4 @@
+---
+features:
+  - SSH host key exchange. The ssh host keys are collected from each host,
+    combined, and written to /etc/ssh/ssh_known_hosts.
author	Oliver Walsh <owalsh@redhat.com>	2017-03-24 14:35:09 +0000
committer	James Slagle <jslagle@redhat.com>	2017-04-20 22:16:35 +0000
commit	68d7196d472b5195c19e871e960996e89a7bcb9c (patch)
tree	83cd2872cf542106ea19a343d1c5217e18287f7d /releasenotes
parent	33e53fd87784914d010411ec85d040623e4c2617 (diff)