Currently key information is written out to stdout whenever it differs from whatever is first seen. We should provide some way to write this information to a file, preferably with more information than is given now. For example,
- Which lookup failed?
- Is the key new, or did the order change?
- Is the change consistent—as with a real keychange or a 'dumb' attack—or does it occur only some of the time—as with a 'smart' attack by the server or malicious exit notes?
Currently key information is written out to stdout whenever it differs from whatever is first seen. We should provide some way to write this information to a file, preferably with more information than is given now. For example,