SSH host keys/en: Difference between revisions

From Alliance Doc
Jump to navigation Jump to search
(Updating to match new version of source page)
(No difference)

Revision as of 20:04, 16 July 2019

Other languages:

Your SSH client will display the host key fingerprint the first time you try to connect to a server, or if it has no record of the server using that host key. When this happens you should always compare it to the published host key fingerprints for that server.

Below are the host key fingerprints for Compute Canada servers, as of July 12, 2019.


Béluga

ECDSA
SHA256:9tRJeRU3sa45G4oxtJxwLo7rPIjWwGaogVwushkvFtE
MD5:85:f7:06:47:5b:0f:95:94:0c:6d:36:52:7a:84:ed:39
ED25519
SHA256:lwmU2AS/oQ0Z2M1a31yRAxlKPcMlQuBPFP+ji/HorHQ
MD5:2d:d7:cc:d0:85:f9:33:c1:44:80:38:e7:68:ce:38:ce
RSA
SHA256:fbkc5hphphBLYjGGCRHvFZYFFwKLb+IzgKvIQMFpvRs
MD5:1f:07:a9:eb:6a:07:12:ca:75:76:16:0b:4f:3f:f3:23

Cedar

ECDSA
  • SHA256:fdAp892EGlADRSC8I16Gj8eun6TLXmn6sFqmi7seb4c
  • MD5:0e:0e:8e:07:26:b1:dd:74:95:8b:32:00:84:42:10:df
RSA
  • SHA256:8jpkttv8GBIfGCkVsEsUdcQPyTJu2QlC+8XsZk1fN/4
  • MD5:64:50:b3:96:97:b0:11:64:db:23:de:65:b0:a7:99:73
ED25519
  • SHA256:a4n68wLDqJhxtePn04T698+7anVavd0gdpiECLBylAU
  • MD5:f8:6a:45:2e:b0:3a:4b:16:0e:64:da:fd:68:74:6a:24

Graham

ECDSA
  • SHA256:JRj286Pkqh6aeO5zx1QUkS8un5fpcapmezusceSGhok
  • MD5:99:59:db:b1:3f:18:d0:2c:49:4e:c2:74:86:ac:f7:c6
ED25519
  • SHA256:mf1jJ3ndpXhpo0k38xVxjH8Kjtq3o1+ZtTVbeM0xeCk
  • MD5:bc:93:0c:64:f7:e7:cf:d9:db:81:40:be:4d:cd:12:5c
RSA
  • SHA256:izJoT1zTpcn3Q8lwhC6VMdVuGWNE/KH44M9hv5Ew3sE
  • MD5:ef:33:04:74:08:44:c5:46:78:81:9b:7a:79:af:0f:be

Niagara

ED25519
  • SHA256:SauX2nL+Yso9KBo2Ca6GH/V9cSFLFXwxOECGWXZ5pxc
  • MD5:b4:ae:76:a5:2b:37:8d:57:06:0e:9a:de:62:00:26:be
RSA
  • SHA256:k6YEhYsI73M+NJIpZ8yF+wqWeuXS9avNs2s5QS/0VhU
  • MD5:98:e7:7a:07:89:ef:3f:d8:68:3d:47:9c:6e:a6:71:5e


SSH test node

We currently offer a test node that you can use to test your client of choice before the change happens. You can connect to it using the hostname ssh-test.computecanada.ca using your regular Compute Canada credentials. Its host key fingerprints are:


ED25519 (256b)
SHA256:Tpu6li6aynYkhmB83Q9Sh7x8qdhT8Mbw4QcDxTaHgxY
MD5:33:8f:f8:57:fa:46:f9:7f:aa:73:e2:0b:b1:ce:66:38
RSA (4096b)
SHA256:DMSia4nUKIyUhO5axZ/As4I8uqlaX0jPcJvcK93D2H0
MD5:a7:08:00:7c:eb:81:f2:f7:2f:5a:92:b0:85:e3:e8:5d


If you can connect successfully to code>ssh-test.computecanada.ca now, then you will continue to be able to connect to our clusters when the SSH changes are made in the summer of 2019.

Another way to find host key fingerprints

You can also determine the host key fingerprints for a system with the following commands:

  • for an MD5 fingerprint hash:
ssh-keyscan beluga.computecanada.ca | ssh-keygen -E md5 -l -f -
  • for an SHA256 fingerprint hash:
ssh-keyscan beluga.computecanada.ca | ssh-keygen -E sha256 -l -f -