Verifying SSH Key Fingerprint

If you've been given a public ssh host key and want to verify it before adding it permanently to your ssh known_hosts file:

Get the public ssh key:

$ ssh-keyscan -p 22 -t rsa,dsa {remote_host} > /tmp/ssh_host_rsa_dsa_key.pub

Get the ssh key fingerprint:

$ ssh-keygen -l -f /tmp/ssh_host_rsa_dsa_key.pub

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

Online verification

Hi,

If you do not have a console available, or want to see if some results were already available and cached, use http://www.server-stats.net/ssh/
It basically does the same thinng but keep the result in a database, so if you come later and check the same server, it will let you know for how long each key have been seen.

Best,
P.

Comment