When SSHing into a droplet for the first time, ssh prompts me to verify the host’s SSH key fingerprint. One way to verify this is to VNC into the droplet and run ssh-keygen -lf [host key location]: it’s still a casual check but it’s better than nothing.
However, as far as I can tell, this cannot be done when setting up an initial SSH key, because the root password is either unset or set to something that cannot be feasibly guessed. I suppose it would be possible to
but that’s cumbersome. (Also, transmitting passwords in plaintext emails makes me uncomfortable.)
Would it be possible to display the SSH RSA/ECDSA host keys as part of the droplet information? (Alternatively, are host keys not relevant for authenticating a host in the DO context?)
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.