> keys as "SSHFP-Record"s, so that I'm able to call via <<ssh > user@remotehost-o "VerifyHostKeyDNS=yes">> and get a result line like > "Matching host key > fingerprint found in DNS".
This may or not be painful, if you're not using DNSSEC. (You may like to glance at a discussion, and the comments, at [1].) > Since I've nothing found, seems like dnsmasq doesn't support SSHFP-Records, > right ?!?! I don't think this is possible at the moment, but we'll have to ask Simon. Simon? Are you there? :-) -JP [1]: http://jpmens.net/2011/02/18/verifyhostkeydnsmaybe/ _______________________________________________ Dnsmasq-discuss mailing list Dnsmasq-discuss@lists.thekelleys.org.uk http://lists.thekelleys.org.uk/mailman/listinfo/dnsmasq-discuss