why is ssh using cached dns record when dig reports updated version of cname record?

ssh domain-name-system

dig performs an actual DNS query, while ssh will simply ask your system (most likely through gethostbyname) to resolve a name.

dig will ask an actual DNS server while ssh will ask the local service in charge of DNS (nowadays, most likely systemd-resolve) which will cache results.

If using systemd, you can clear the cash using systemd-resolve flush-caches.

Related

Difficulty compiling Apache with --enable-ssl
Exchange mailbox size larger on Server than on Client
Why does Chrome install itself under user directory instead of Program files?
How to make TortoiseHg pull certain branch only?
See contents of SD card in terminal window on Mac OS X
GitHub for Windows Install Error
Interactive console based CSV editor
Simplest way to check for dynamic IP change
How to hide your birthday year in Skype? [closed]
Intel HD Graphics 4000 is used instead of nVidia Geforce 630M for old game?
Bluetooth "Remove Failed" (Windows 8)
How can I encrypt the swap file under Windows 7?