On 2024-01-19, 11:09 -0800, Felix Lechner <felix.lech...@lease-up.com> wrote: > I publish my server-side keys via SSHFP records in a domain secured by > DNSSEC.
Hi Felix, Thanks. How does the publishing happen exactly, if I may ask? Is it `ssh-keygen -r ...' + a web API call to the DNS provider? My problem with this is that I wouldn't want to include my API credentials in the Guix image. Unless there's a simpler alternative that doesn't require credentials and that I'm not seeing? For instance if the DNS functionality is provided by the hosting provider itself, then credentials might not be needed? Thanks, best wishes, Fabio. -- Fabio Natali https://fabionatali.com
