Host machine SSH fingerprints
All our virtual machine hosts have their SSH fingerprints stored as
SSHFP records on our DNS servers.
You can use host key checking in OpenSSH as follows:
patch@desk1 ~ $ ssh -o "VerifyHostKeyDNS=yes" example.vmadmin.bytemark.co.uk The authenticity of host 'example.vmadmin.bytemark.co.uk (2001:41c8:0:858::49)' can't be established. RSA key fingerprint is f0:68:18:c3:7a:7d:cc:2c:15:e5:76:8f:bc:93:b3:5a. Matching host key fingerprint found in DNS. Are you sure you want to continue connecting (yes/no)?