Ask Your Question

Is there a public location that shows the fedora project ssh host keys

asked 2016-01-22 17:02:40 -0600

raconteur gravatar image

updated 2016-01-24 17:26:06 -0600

mether gravatar image

The instructions for setting up to interact with the fedora project infrastructure (documented here ) suggest some ssh commands. If you have not connected to the fedora project servers before you may get something like:

The authenticity of host ' (' can't be established.
RSA key fingerprint is SHA256:sDaefTE8n458kO+1OETLQ9mPEaGrhDlnZ8V79pn/MMM.
RSA key fingerprint is MD5:07:d4:02:db:9f:70:d5:2d:7f:1b:6a:df:83:73:95:1d.

Rather than blindly assume the host key is correct (see also "TOFU"), I'd like to verify the host keys using another channel. Is there a https web page hosted by the project that shows the known project server host keys? Google didn't help me find it - sorry if I missed it somehow.

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted

answered 2016-01-23 12:47:56 -0600

ryan27996 gravatar image

A list of Fedora's RSA keys can be found here.

One way of getting the fingerprints:

$ wget
$ ssh-keygen -lf ssh_known_hosts > fedora_rsa_fingerprints
$ cat fedora_rsa_fingerprints | grep "sDaefTE8n458kO+1OETLQ9mPEaGrhDlnZ8V79pn/MMM"

Alternatively you could just append the file to your known_hosts file.

edit flag offensive delete link more


Thanks. Where did you find that information?

raconteur gravatar imageraconteur ( 2016-01-28 20:45:42 -0600 )edit

Googling for 'fedora ssh fingerprints' gets a hit for this page: That page has a link to the ssh_known_hosts page suggested above by ryan27996. I didn't find any referring page in the fedora docs. It must be documented somewhere (and maybe even a copy of the ssh_known_hosts file in git somewhere), but I just could not find it.

raconteur gravatar imageraconteur ( 2016-02-03 00:31:10 -0600 )edit

Question Tools

1 follower


Asked: 2016-01-22 17:02:40 -0600

Seen: 305 times

Last updated: Jan 23 '16