Bugtraq mailing list archives

Re: SSH host key fingerprint - through HTTPS

From: Micha Borrmann <micha.borrmann () syss de>
Date: Mon, 1 Sep 2014 13:41:02 +0200

Nice tool, but it is also possible, to use DNSSEC to validate SSH
fingerprints, which is much more comfortable and more secure.

Am 01.09.2014 um 06:41 schrieb John Leo:

This tool displays SSH host key fingerprint - through HTTPS.

SSH is about security; host key matters a lot here; and you can know for
sure by using this tool. It means you know precisely how to answer this
question:
The authenticity of host 'blah.blah.blah (10.10.10.10)' can't be
established.
RSA key fingerprint is
a4:d9:a4:d9:a4:d9a4:d9:a4:d9a4:d9a4:d9a4:d9a4:d9a4:d9.
Are you sure you want to continue connecting (yes/no)?

https://checkssh.com/

We hackers don't want to get hacked. :-) SSH rocks - when host key is
right. Enjoy!

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Current thread:

SSH host key fingerprint - through HTTPS John Leo (Sep 01)
- Re: SSH host key fingerprint - through HTTPS Micha Borrmann (Sep 01)
  - Re: SSH host key fingerprint - through HTTPS John Leo (Sep 02)
- Re: SSH host key fingerprint - through HTTPS Chris Nehren (Sep 01)
  - Re: SSH host key fingerprint - through HTTPS Lukasz Biegaj (Sep 02)
    - Re: SSH host key fingerprint - through HTTPS Jamie Riden (Sep 02)
- Re: [FD] SSH host key fingerprint - through HTTPS maxigas (Sep 02)
  - Re: [FD] SSH host key fingerprint - through HTTPS John Leo (Sep 02)
- Message not available
  - Re: [FD] SSH host key fingerprint - through HTTPS Jeroen van der Ham (Sep 02)
    - Re: [FD] SSH host key fingerprint - through HTTPS John Leo (Sep 02)
- Message not available
  - Re: [FD] SSH host key fingerprint - through HTTPS john (Sep 02)
- Message not available
  - Re: [FD] SSH host key fingerprint - through HTTPS John Leo (Sep 02)