{"id":786,"date":"2015-03-29T14:24:46","date_gmt":"2015-03-29T05:24:46","guid":{"rendered":"http:\/\/matoken.org\/blog\/?p=786"},"modified":"2015-03-29T14:24:46","modified_gmt":"2015-03-29T05:24:46","slug":"openssh_6-8_6-8p1-fingerprint_algorithm","status":"publish","type":"post","link":"https:\/\/matoken.org\/blog\/2015\/03\/29\/openssh_6-8_6-8p1-fingerprint_algorithm\/","title":{"rendered":"OpenSSH 6.8\/6.8p1 \u3067\u9375\u6307\u7d0b\u306e\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u898f\u5b9a\u5024\u304c\u5909\u308f\u3063\u305f\u306e\u3067\u8a66\u3059"},"content":{"rendered":"<div style=\"font-family: 'Lucida Grande', 'Segoe UI', 'Apple SD Gothic Neo', 'Malgun Gothic', 'Lucida Sans Unicode', Helvetica, Arial, sans-serif; font-size: 0.9em; overflow-x: hidden; overflow-y: auto; margin: 0px !important; padding: 5px 20px 26px !important; background-color: rgb(255, 255, 255);font-family: 'Hiragino Sans GB', 'Microsoft YaHei', STHeiti, SimSun, 'Lucida Grande', 'Lucida Sans Unicode', 'Lucida Sans', 'Segoe UI', AppleSDGothicNeo-Medium, 'Malgun Gothic', Verdana, Tahoma, sans-serif; padding: 20px;padding: 20px; font-family: 'Helvetica Neue', Helvetica, 'Hiragino Sans GB', 'Microsoft YaHei', STHeiti, SimSun, 'Segoe UI', AppleSDGothicNeo-Medium, 'Malgun Gothic', Arial, freesans, sans-serif; font-size: 15px; line-height: 1.6; -webkit-font-smoothing: antialiased; background: rgb(255, 255, 255);\">\n<p style=\"margin: 1em 0px; word-wrap: break-word;\"><a href=\"https:\/\/www.flickr.com\/photos\/119142834@N05\/16771103418\" title=\"openssh by Kenichiro MATOHARA, on Flickr\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/farm8.staticflickr.com\/7612\/16771103418_d0789f1b03_o.gif\" width=\"578\" height=\"191\" alt=\"openssh\" style=\"max-width: 100%;\"><\/a><\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">OpenSSH 6.8\/6.8p1 \u306e\u30ea\u30ea\u30fc\u30b9\u30ce\u30fc\u30c8\u3092\u773a\u3081\u3066\u3044\u3066\u6c17\u306b\u306a\u308b\u70b9\u304c\uff0e<br style=\"clear: both;\"><a href=\"http:\/\/www.openssh.com\/txt\/release-6.8\" style=\"text-decoration: none; vertical-align: baseline;color: rgb(50, 105, 160);\">http:\/\/www.openssh.com\/txt\/release-6.8<\/a><\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); overflow: auto; padding: 0.5em;\"><code style=\"border: 0px; display: block;font-family: Consolas, Inconsolata, Courier, monospace; font-weight: bold; white-space: pre; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 0.9em; font-family: Consolas, Inconsolata, Courier, monospace;\">* Add FingerprintHash option to ssh(1) and sshd(8), and equivalent\r\n   command-line flags to the other tools to control algorithm used\r\n   for key fingerprints. The default changes from MD5 to SHA256 and\r\n   format from hex to base64.\r\n Fingerprints now have the hash algorithm prepended. An example of\r\n   the new format: SHA256:mVPwvezndPv\/ARoIadVY98vAC0g+P\/5633yTC4d\/wXE\r\n   Please note that visual host keys will also be different.\r\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\u9375\u6307\u7d0b\u306e\u898f\u5b9a\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u304cMD5 \u304b\u3089SHA256 \u306b\u5909\u308f\u308a\uff0c\u8868\u793a\u5f62\u5f0f\u3082hex \u304b\u3089base64 \u306b\u306a\u3063\u305f\uff0cvisual host key \u3082\u5909\u308f\u308b\uff0e\u3068\u3044\u3046\u3053\u3068\u3067\u78ba\u8a8d\u3057\u3066\u307f\u307e\u3057\u305f\uff0e<\/p>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\u5f93\u6765\u306e\u30b3\u30de\u30f3\u30c9\u3067\u306e\u9375\u6307\u7d0b\u8868\u793a\uff0eMD5\/hex \u304c\u4f7f\u308f\u308c\u308b<\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); overflow: auto; padding: 0.5em;\"><code class=\"sh\" style=\"border: 0px; display: block;font-family: Consolas, Inconsolata, Courier, monospace; font-weight: bold; white-space: pre; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 0.9em; font-family: Consolas, Inconsolata, Courier, monospace;\">% ssh-keygen -l -v -f \/etc\/ssh\/ssh_host_ecdsa_key\r\n256 e8:d0:53:e7:34:59:e9:77:3a:e7:8d:8a:a9:f6:91:84 \/etc\/ssh\/ssh_host_ecdsa_key.pub (ECDSA)\r\n+---[ECDSA 256]---+\r\n|            ..   |\r\n|           o.    |\r\n|        . =.     |\r\n|     . o = .. . .|\r\n|    . + E o  . o |\r\n|     o . . .  o .|\r\n|      .   o    =.|\r\n|        .  +  . o|\r\n|       ..o+ ..   |\r\n+-----------------+\r\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">OpenSSH 6.8\/6.8p1 \u306e\u30b3\u30de\u30f3\u30c9\u3067\u306e\u9375\u6307\u7d0b\u8868\u793a\uff0eSHA256\/base64\u304c\u4f7f\u308f\u308c\u3066\u9375\u6307\u7d0b\u306e\u982d\u306bSHA256\u304c\u4ed8\u3044\u305f\u308avisual host key  \u306e\u898b\u305f\u76ee\u3082\u5909\u308f\u308b\uff0e<\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); overflow: auto; padding: 0.5em;\"><code class=\"sh\" style=\"border: 0px; display: block;font-family: Consolas, Inconsolata, Courier, monospace; font-weight: bold; white-space: pre; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 0.9em; font-family: Consolas, Inconsolata, Courier, monospace;\">% \/home\/mk\/usr\/local\/openssh-6.8p1\/bin\/ssh-keygen -l -v -f \/etc\/ssh\/ssh_host_ecdsa_key\r\n256 SHA256:pDZReijOXeDXAE0IgYb5E+DHgbyvClEllKCs499RI54 root@x220(ECDSA)\r\n+---[ECDSA 256]---+\r\n|+*+++oo=+        |\r\n|*o*o...=.o       |\r\n|.=o+. = = .      |\r\n|.o+o o B         |\r\n|+ ..o.=oS        |\r\n|.o ...+..        |\r\n|...  E           |\r\n|... . .          |\r\n|o  . .           |\r\n+----[SHA256]-----+\r\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\u3057\u304b\u3057\uff0c<code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-family: Consolas, 'Liberation Mono', Menlo, Courier, monospace; font-size: 85%; padding: 0.2em 0.5em; border: 0px; background-color: rgba(0, 0, 0, 0.0666667);\">-E<\/code> option \u304c\u63d0\u4f9b\u3055\u308c\u308b\u3088\u3046\u306b\u306a\u3063\u3066\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u3092\u6307\u5b9a\u3067\u304d\u308b\u306e\u3067\u3053\u308c\u3067MD5\/hex \u3067\u9375\u6307\u7d0b\u306e\u78ba\u8a8d\u304c\u53ef\u80fd\uff0e<br style=\"clear: both;\">\u203bssh-keygen \u2014help \u3088\u308a<\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); overflow: auto; padding: 0.5em;\"><code style=\"border: 0px; display: block;font-family: Consolas, Inconsolata, Courier, monospace; font-weight: bold; white-space: pre; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 0.9em; font-family: Consolas, Inconsolata, Courier, monospace;\">   ssh-keygen -l [-v] [-E fingerprint_hash] [-f input_keyfile]\r\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\u203bman \u3088\u308a<\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); overflow: auto; padding: 0.5em;\"><code style=\"border: 0px; display: block;font-family: Consolas, Inconsolata, Courier, monospace; font-weight: bold; white-space: pre; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 0.9em; font-family: Consolas, Inconsolata, Courier, monospace;\"> -E fingerprint_hash\r\n         Specifies the hash algorithm used when displaying key fingerprints.  Valid options are: \u201cmd5\u201d and \u201csha256\u201d.  The default is \u201csha256\u201d.\r\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">OpenSSH 6.8\/6.8p1 \u306e\u30b3\u30de\u30f3\u30c9\u3067MD5 \u3092\u6307\u5b9a\uff0eMD5\/hex \u3067\u9375\u6307\u7d0b\u304c\u8868\u793a\u3055\u308c\u308b\uff0e\u305f\u3060\uff0c\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e<code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-family: Consolas, 'Liberation Mono', Menlo, Courier, monospace; font-size: 85%; padding: 0.2em 0.5em; border: 0px; background-color: rgba(0, 0, 0, 0.0666667);\">MD5<\/code> \u304c\u9375\u6307\u7d0b\u306e\u982d\u306b\u3064\u304f\u3057\u5f8c\u308d\u306bcomment \u3082\u4ed8\u304f\u306e\u3067diff \u3068\u304b\u3092\u4f7f\u3046\u3068\u5dee\u7570\u304c\u51fa\u308b\uff0evisual host key \u3082\u4e0b\u306b<code style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-family: Consolas, 'Liberation Mono', Menlo, Courier, monospace; font-size: 85%; padding: 0.2em 0.5em; border: 0px; background-color: rgba(0, 0, 0, 0.0666667);\">[MD5]<\/code>\u304c\u3064\u304f\u306e\u3067\u540c\u69d8\uff0e<\/p>\n<pre style=\"border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); overflow: auto; padding: 0.5em;\"><code style=\"border: 0px; display: block;font-family: Consolas, Inconsolata, Courier, monospace; font-weight: bold; white-space: pre; margin: 0px;border-top-left-radius: 3px; border-top-right-radius: 3px; border-bottom-right-radius: 3px; border-bottom-left-radius: 3px; word-wrap: break-word; border: 1px solid rgb(204, 204, 204); padding: 0px 5px; margin: 0px 2px;font-size: 0.9em; font-family: Consolas, Inconsolata, Courier, monospace;\">% \/home\/mk\/usr\/local\/openssh-6.8p1\/bin\/ssh-keygen -l -v -E md5 -f \/etc\/ssh\/ssh_host_ecdsa_key\r\n256 MD5:e8:d0:53:e7:34:59:e9:77:3a:e7:8d:8a:a9:f6:91:84 root@x220(ECDSA)\r\n+---[ECDSA 256]---+\r\n|            ..   |\r\n|           o.    |\r\n|        . =.     |\r\n|     . o = .. . .|\r\n|    . + E o  . o |\r\n|     o . . .  o .|\r\n|      .   o    =.|\r\n|        .  +  . o|\r\n|       ..o+ ..   |\r\n+------[MD5]------+\r\n% ssh-keygen -l -v -f \/etc\/ssh\/ssh_host_ecdsa_key\r\n<\/code><\/pre>\n<p style=\"margin: 1em 0px; word-wrap: break-word;\">\u3066\u3053\u3068\u3067\u66ab\u304f\u306fMD5\/SHA256\u306e2\u7a2e\u985e\u306e\u9375\u6307\u7d0b\u3092\u63d0\u4f9b\u3057\u305f\u307b\u3046\u304c\u826f\u3055\u305d\u3046\u3067\u3059\u306d\uff0e<\/p>\n<\/div>\n<div>\n<iframe src=\"http:\/\/rcm-fe.amazon-adsystem.com\/e\/cm?lt1=_blank&#038;bc1=000000&#038;IS2=1&#038;bg1=FFFFFF&#038;fc1=000000&#038;lc1=0000FF&#038;t=matokensmeme-22&#038;o=9&#038;p=8&#038;l=as4&#038;m=amazon&#038;f=ifr&#038;ref=ss_til&#038;asins=4873112877\" style=\"width:120px;height:240px;\" scrolling=\"no\" marginwidth=\"0\" marginheight=\"0\" frameborder=\"0\"><\/iframe><iframe src=\"http:\/\/rcm-fe.amazon-adsystem.com\/e\/cm?lt1=_blank&#038;bc1=000000&#038;IS2=1&#038;bg1=FFFFFF&#038;fc1=000000&#038;lc1=0000FF&#038;t=matokensmeme-22&#038;o=9&#038;p=8&#038;l=as4&#038;m=amazon&#038;f=ifr&#038;ref=ss_til&#038;asins=4774168076\" style=\"width:120px;height:240px;\" scrolling=\"no\" marginwidth=\"0\" marginheight=\"0\" frameborder=\"0\"><\/iframe><iframe src=\"http:\/\/rcm-fe.amazon-adsystem.com\/e\/cm?lt1=_blank&#038;bc1=000000&#038;IS2=1&#038;bg1=FFFFFF&#038;fc1=000000&#038;lc1=0000FF&#038;t=matokensmeme-22&#038;o=9&#038;p=8&#038;l=as4&#038;m=amazon&#038;f=ifr&#038;ref=ss_til&#038;asins=B00OX19ZT4\" style=\"width:120px;height:240px;\" scrolling=\"no\" marginwidth=\"0\" marginheight=\"0\" frameborder=\"0\"><\/iframe>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>OpenSSH 6.8\/6.8p1 \u306e\u30ea\u30ea\u30fc\u30b9\u30ce\u30fc\u30c8\u3092\u773a\u3081\u3066\u3044\u3066\u6c17\u306b\u306a\u308b\u70b9\u304c\uff0ehttp:\/\/www.openssh.com\/txt\/release-6.8 * Add FingerprintHash option to  [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"webmentions_disabled_pings":false,"webmentions_disabled":false,"activitypub_content_warning":"","activitypub_content_visibility":"","activitypub_max_image_attachments":4,"activitypub_interaction_policy_quote":"anyone","activitypub_status":"","footnotes":""},"categories":[6],"tags":[275,72,289],"class_list":["post-786","post","type-post","status-publish","format-standard","hentry","category-linux","tag-linux","tag-openssh","tag-oss"],"_links":{"self":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/posts\/786","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/comments?post=786"}],"version-history":[{"count":0,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/posts\/786\/revisions"}],"wp:attachment":[{"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/media?parent=786"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/categories?post=786"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/matoken.org\/blog\/wp-json\/wp\/v2\/tags?post=786"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}