defenestration
commented
5 years ago It looks like ssh::ssh_key_import: false will disable the module from populating the ssh_known_hosts file.
Closed ggeldenhuis closed 5 years ago
defenestration
commented
5 years ago It looks like ssh::ssh_key_import: false will disable the module from populating the ssh_known_hosts file.
ghoneycutt
commented
5 years ago Thanks!
For bigger companies 10 000+ nodes having the ssh module automatically populate /etc/ssh/ssh_know_hosts file is not great behaviour. This really should be turned of by default and a user attribute provided to turn on this behaviour. I can't currently see any flag that would allow you to easily turn off this behaviour.