Ask Your Question
0

Is there a public location that shows the fedora project ssh host keys

asked 2016-01-22 17:02:40 -0600

raconteur gravatar image

updated 2016-01-24 17:26:06 -0600

mether gravatar image

The instructions for setting up to interact with the fedora project infrastructure (documented here https://fedoraproject.org/wiki/Infras... ) suggest some ssh commands. If you have not connected to the fedora project servers before you may get something like: 

The authenticity of host 'fedorapeople.org (152.19.134.196)' can't be established.
RSA key fingerprint is SHA256:sDaefTE8n458kO+1OETLQ9mPEaGrhDlnZ8V79pn/MMM.
RSA key fingerprint is MD5:07:d4:02:db:9f:70:d5:2d:7f:1b:6a:df:83:73:95:1d.

Rather than blindly assume the host key is correct (see also "TOFU"), I'd like to verify the host keys using another channel. Is there a https web page hosted by the project that shows the known project server host keys? Google didn't help me find it - sorry if I missed it somehow.

edit retag flag offensive close merge delete
add a comment

1 Answer

Sort by ยป oldest newest most voted
2

answered 2016-01-23 12:47:56 -0600

ryan27996 gravatar image

A list of Fedora's RSA keys can be found here.

One way of getting the fingerprints:

$ wget https://admin.fedoraproject.org/ssh_known_hosts
$ ssh-keygen -lf ssh_known_hosts > fedora_rsa_fingerprints
$ cat fedora_rsa_fingerprints | grep "sDaefTE8n458kO+1OETLQ9mPEaGrhDlnZ8V79pn/MMM"

Alternatively you could just append the file to your known_hosts file.

edit flag offensive delete link more

Comments

Thanks. Where did you find that information?

raconteur gravatar imageraconteur ( 2016-01-28 20:45:42 -0600 )edit
1

Googling for 'fedora ssh fingerprints' gets a hit for this page: http://admin.fedoraproject.org/finger... That page has a link to the ssh_known_hosts page suggested above by ryan27996. I didn't find any referring page in the fedora docs. It must be documented somewhere (and maybe even a copy of the ssh_known_hosts file in git somewhere), but I just could not find it.

raconteur gravatar imageraconteur ( 2016-02-03 00:31:10 -0600 )edit
add a comment

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2016-01-22 17:02:40 -0600

Seen: 305 times

Last updated: Jan 23 '16

Related questions

GNOME Keyring isn't automatically loading/unlocking my SSH keys

FTP and SSH not working.

How to enable outgoing SSH?

last command not showing ip of ssh login

Fedora 17 - ssh as root and try to use port forwarding gets permission denied in secure log

Mathematica through ssh tunnel does not work in fc23

ask-pass on Wayland

Why can I not ping host?

ssh permission denied with correct password

Cannot establish SSH with GPG-agent

Ask Fedora is community maintained and Red Hat or Fedora Project is not responsible for content. Content on this site is licensed under a CC-BY-SA 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2