linux:sshfp
It is now possible to use gratisdns with SSHFP. This adds an extra security layer, and enables you to verify your ssh server against the DNS. However it requires dnssec to work properly. More on how to configure your dns server here.
SSHFP
Login togratisdns and configure your domain(s) for SSHFP.
Next you will need is your ssh fingerprint, run the following command.
$ ssh-keygen -r hydrogen.notfound.dk
The command will return two fingerprints, 1 is DSA and 2 is RSA.
hydrogen.notfound.dk IN SSHFP 1 1 1309b70fce0b76cccf328ac7d6cc04c52548f986 hydrogen.notfound.dk IN SSHFP 2 1 afe8f0b1f027c93d69f8185070c830804c59fcb7
In the section SSHFP at gratisdns fill out the following
Vært: <hostname>
Data: <fingerprint 1>
Preference 1: 1 ( 1 for DSA and 2 for RSA)
preference 2: 1
Select save and wait until the DNS servers has refreshed. You can now verify sshfp with following command
ssh -v -o VerifyHostKeyDNS=ask -p 22 notfound.dk
Links:
