Hi List,
I'm currently looking for a solution to provide ssh-keys via DNS. Seems
like sshfp records will solve this issue ... so far so good.
Since we are using dnsmasq as dns/dhcp/pxe-server I wanted to ask how to
put the generated sshfp records into dnsmasq ???
After searching for a while I got
Nicholas Weaver wrote:
On May 15, 2012, at 1:09 PM, Timothy Madden wrote:
And you were right, using
dig @8.8.8.8 ...
returned about 54ms for www.loveparty.ch, and 38 for www.google.ro, which
is so, so fast for me! But than again I would not like to just count on
that (an external DNS
dnsmasq doesn't use zone files. You can try with txt-record= (see the
man page for details)
On Thu, May 24, 2012 at 5:44 AM, Gerd Koenig
koenig.boden...@googlemail.com wrote:
Hi List,
I'm currently looking for a solution to provide ssh-keys via DNS. Seems like
sshfp records will solve this
Hi Richard,
thanks for answering
Yes, it is possible to add both lines as a TXT-Record, but this is not what
I really want ;-) .
In the end I want to be able to establish a ssh connection to a remote host
and its public key should be offered by DNS. Therefore I have to add the
keys as
keys as SSHFP-Records, so that I'm able to call via ssh
user@remotehost-o VerifyHostKeyDNS=yes and get a result line like
Matching host key
fingerprint found in DNS.
This may or not be painful, if you're not using DNSSEC. (You may like to
glance at a discussion, and the comments, at [1].)
Hi JP,
thanks for your response. I'll work through the discussion and dive into
dnssec. Interesting topic I didn't get in touch...
br...: Gerd :...
On 24 May 2012 20:17, Jan-Piet Mens jpmens@gmail.com wrote:
keys as SSHFP-Records, so that I'm able to call via ssh
user@remotehost-o