SSH Fingerprints

Effective management of fingerprints protects against:

IP spoofing, where a remote host sends out packets which pretend to come from another, trusted host. Ssh even protects against a spoofer on the local network, who can pretend he is your router to the outside.
IP source routing, where a host can pretend that an IP packet comes from another, trusted host.
DNS spoofing, where an attacker forges name server records.
Connecting to and revealing passwords to arbitrary servers.

Server fingerprints

The following fingerprints are signed by BradleySmith's key, uid C718D347 (sigs)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

codd      e8:51:76:72:b4:d4:21:48:7c:02:ab:b5:39:9a:8e:23
backus    a4:f1:cd:81:e2:01:d4:b3:12:16:6e:b9:ac:1c:8f:d7
goggins   a1:7e:3a:cc:2e:4d:ce:62:2a:93:06:c3:0f:14:48:9b
jess      c4:81:50:28:45:55:bf:81:a7:fe:95:2f:c2:45:c0:b9
insomnia  0c:f2:e9:08:b9:7d:73:5a:47:31:03:03:19:17:59:df
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIKc3Lj3BimscY00cRAho+AJ9ZLCyLL1JnnPuj3TRLE42pE+t1zQCfV/V3
sSJf5nQuvuGG5AkWdOvlJB8=
=THny
-----END PGP SIGNATURE-----

More information

http://www.tartarus.org/~simon/putty-snapshots/htmldoc/Chapter8.html#pubkey - Configuring PuTTY
http://www.chiark.greenend.org.uk/~sgtatham/putty/faq.html#QA.2.9 - on disabling the "host key fingerprint" warning in PuTTY

Techteam Wiki: Servers/SSHFingerprints (last edited 2009-02-17 15:52:28 by localhost)