ssh-proxycommand marginal UI not very helpful when ssh host key can not be retrieved
When using the ssh-proxycommand, if the host key can not be retrieved with ssh-keyscan (as can be the case if the host is hidden behind a firewall and accessed by a server hop), then the marginal UI is not very helpful. It only outputs this:
-------------------- Monkeysphere warning ------------------- Monkeysphere found OpenPGP keys for this hostname, but none had full validity. Could not retrieve RSA host key from devil.fifthhorseman.net. -------------------- ssh continues below --------------------
However, it's possible that the user would have a marginal matching key in their gpg keyring that does match the ssh host key, and seeing the ssh fingerprint of the matching openpgp key would be useful when accepting the ssh host key. What is the correct thing to do here? Should the marginal UI output the gpg info and ssh fingerprints of all keys found that match the host user ID? This could potentially be a lot, but probably only if there are lots of forgeries for some reason.
(from redmine: created on 2009-04-06, closed on 2009-07-11)