Originally Posted by cliffordw
SSH servers have host keys, which are generated randomly with the "ssh-keygen" command. These keys contain a private and public key part, just like user keys.
The fingerprint for a key is simply an MD5 hash of the public key. The server's fingerprint you see when you connect to a server for the first time is derived from the host's public key.
First off, I am using a Mac to connect to my server. I used ssh-keygen -t rsa -b 2048
to generate a public/private key pair on my laptop, then I uploaded the public key to my server.
When I log in to the server for the first time using SSH, is the fingerprint that I see in Terminal coming from the public key I uploaded above?
Or do the system admins for my web host create a public/private key pair similar to how I did on my Mac, and THAT public key is the one that is used for my server's fingerprint?
Hopefully you follow me?