Hi,
I'm an old pgp user, so my concepts and vocabulary *might* be a little
out of style for ssh. If so, please correct me.
I have (open) sshd installed and configured on a server. I have the
(open) ssh client on another PC. During the sshd installation, private
and public keys for RSA and DSA were both generated. During this key
generation, the fingerprints for the public keys were printed to stdout.
I took a pen and scribbled them down.
When I try to connect to the server from a remote PC using the ssh
client, the client tells me something like: Unknown host, this is the
public key fingerprint, do you want to accept? It then prints out the
fingerprint of the public host key it has received, for me to decide
upon. Since I could verify the fingerprint against my notes, I had no
problem to accept the public key.
Now, assume that the client PC is remote. Not run by me at all. The user
on that computer might want to verify the fingerprint before trusting
that he's actually talking to my server and not to a 'man in the
middle'.
So he calls me on the phone (I know the guy and he knows me) and he asks
me: "What's your public key fingerprint?"
In my case I have it, since I wrote it down. But assume I didn't.
Question:
How can I, on the sshd server computer extract this fingerprint from a
public key so that I can read it up to my friend over the telephone and
he can know for sure that he's connecting to my computer?
Best regards
Gustav
--
pgp = Pretty Good Privacy.
To get my public pgp key, send an e-mail to: [EMAIL PROTECTED]
Visit my web site at http://www.schaffter.com
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
