> keys as "SSHFP-Record"s, so that I'm able to call via <<ssh
> user@remotehost-o "VerifyHostKeyDNS=yes">> and get a result line like
> "Matching host key
> fingerprint found in DNS".
This may or not be painful, if you're not using DNSSEC. (You may like to
glance at a discussion, and the comments, at [1].)
> Since I've nothing found, seems like dnsmasq doesn't support SSHFP-Records,
> right ?!?!
I don't think this is possible at the moment, but we'll have to ask
Simon. Simon? Are you there? :-)
-JP
[1]: http://jpmens.net/2011/02/18/verifyhostkeydnsmaybe/
_______________________________________________
Dnsmasq-discuss mailing list
Dnsmasq-discuss@lists.thekelleys.org.uk
http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss
