I am connecting to remote hosts via jump host where I verify only the jump host's host key, but turn off host key verification for the target hosts.
the ssh command arguments look like this:
-o StrictHostKeyChecking=no -o ProxyCommand="ssh -o StrictHostKeyChecking=yes -W %h:%p -q {{ user }}@{{ jh_ip }}"
Assuming the jump host is secure, is a MITM attack possible under this scenario?