Ignore known-hosts security in SSH for some addresses

ssh

I have a router with a lot of computers on it. It has DHCP, so they are assigned IP addresses by the time they log in.

Because their IPs are shuffled every day, I get a lot of

WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!

messages from SSH.

Is there any way to tell ssh to ignore the man-in-the-middle security on all addresses in the 192.168.2.* range but keep the security for everything else?


Solution 1:

The best way to solve the problem would be to use names instead of addresses – a hostname always stays the same when the address changes. Some routers have DNS support built in (you could hook dhcpd into bind9 for DNS). Using Avahi for *.local names is also easy.

If you don't want that, you can tell SSH to never store the keys:

Host 192.168.2.*
    UserKnownHostsFile /dev/null
    StrictHostKeyChecking no

But IMHO that's just lazy. :)

Related

How do I see the most recent updates installed in Windows 8.1 in "installed updates"?
Not quite grasping /dev/random and /dev/urandom
How does anonymous VPN work?
No such partition grub rescue
Backup / Disaster Recovery, should I store RAR-compressed files? [closed]
My processor speed drops to 800 Mhz when my Lenovo Thinkpad W541 is plugged into the OEM cable
Can I remote login to Microsoft's Windows with the command line?
RAM patch for Windows 7 32bit [closed]
How to install the DLL files in windows 7
Computer won't boot up (only beeps)
Formula return cell defined name
ZIP password recovery [duplicate]