chatmail
chatmail copied to clipboard
Generate SSHFP DNS records
Running ssh-keygen -r nine.testrun.org.
on the server generates this:
root@nine:~# ssh-keygen -r nine.testrun.org.
nine.testrun.org. IN SSHFP 1 1 dba387c91a3e322b0e6913a148b312e8118a8e3f
nine.testrun.org. IN SSHFP 1 2 5128ef50b2e4fd86a79fa685e2aa0fa7ba1255cdb35ed18ed299a8ece4c2fb57
nine.testrun.org. IN SSHFP 3 1 376642ffe3e546ad6bf3eb9a261ecace439e1c37
nine.testrun.org. IN SSHFP 3 2 ebd632f02d45a7bce6ca8b40e666e7e9abfcf44d04fda5b2fc5b2957f9bfa44e
nine.testrun.org. IN SSHFP 4 1 77b36179c8d024e2a59885fb74bd786990d0142e
nine.testrun.org. IN SSHFP 4 2 014bfe14ffa38da8857b6bfa59f28b73d52756a553dc66c1b4e172d09e70abf1
This is only useful if DNSSEC is supported and the client uses VerifyHostKeyDNS
, but does not hurt to add on all chatmail servers in any case.