Matt's Blog

It's a blog.

VerifyHostKeyDNS

In: Uncategorized

29 Nov 2011

I just happened across something nifty: you can use the VerifyHostKeyDNS option in your SSH configuration to fetch the host’s public key fingerprint over DNSSEC-secured DNS (with a “SSHFP” record type).

This is defined in RFC 4255, Using DNS to Securely Publish Secure Shell (SSH) Key Fingerprints if you’re looking for some light reading.

Related posts:

Comment Form

Entries (RSS)
Comments (RSS)

On Other Sites

Categories

2008 (45)
Business (82)
Computers (201)
Cool Links (154)
Funny (48)
Ham Radio (14)
Hero of the Day (47)
Humanitarianism (42)
Ideas (75)
Insanity (175)
Interesting (80)
Linux Tips (40)
Lists (26)
Living (202)
Materialism (77)
Obama (55)
OCD (119)
Performance (29)
Photography (54)
Politics (113)
Programming (96)
Rails (1)
Rants & Raves (316)
Scanner Listening (2)
School (43)
Security (26)
Uncategorized (751)

Archives

Recent Comments
Recent Posts
Tags

Matt: Hey Victor, A couple good resources for you... http://www.scanboston.com/boston.htm is really det [...]
victor: Hi i just got a uniden bearcay scanner and have no local or regional frequency directory.just 1 460 [...]
Matt: I do use them periodically. I bought a few i760's, for perhaps $10 apiece in a lot, on eBay a while [...]
Marin: Did you eventually end up going with an iDEN phones using Direct Talk? I had some i560's a few year [...]
Dan: fyi, EOD = explosive ordnance disposal [...]

apc caching Performance php wordpress