An SSHFP Record (SSH Fingerprint) is a type of DNS record that stores the public key fingerprint of an SSH server. It allows a client to verify the server's identity before connecting, preventing a specific type of man-in-the-middle attack.
The form has the following fields:
• Hostname: Enter the hostname of your SSH server.
Examples:
- @ (if you want it for the main domain itself, e.g., example.com)
- server (if you want server.example.com)
- ssh (if you want ssh.example.com)
- your-server-hostname (the actual hostname of your server)
• Text: This is where the actual SSHFP record content goes.
Format: [algorithm] [hash_type] [fingerprint]
Example: 1 1 1234567890ABCDEF1234567890ABCDEF12345678
• TTL: The time interval (in seconds) that this record may be cached before the source of the information should again be consulted. Zero values are interpreted to mean that the record can only be used for the transaction in progress, and should not be cached.
• Active: This defines whether this SSHFP record is active or not.
