Skip to content

Show fingerprint of the SSH host key #35322

New issue
New issue
Open
Open
Show fingerprint of the SSH host key#35322
Labels
type/proposalThe new feature has not been accepted yet but needs to be discussed first.
@FranklinYu

Description

@FranklinYu
FranklinYu
opened on Aug 20, 2025

Feature Description

GitLab automatically shows the fingerprint under path /help/instance_configuration#ssh-host-keys-fingerprints, such as this page on the official instance. It would be nice for Gitea to also publish this information automatically.

This is useful when connecting to Gitea the first time, and users will be prompted something like

The authenticity of host 'git.example.com (192.0.2.1)' can't be established.
ECDSA key fingerprint is SHA256:HbW3g8zUjNSksFbqTiUWPWg2Bq1x8xdGUrliXFzSnUw.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added 'git.example.com' (ECDSA) to the list of known hosts

Right now users can only blindly trust it, leaving room for potentially MitM attack.

Screenshots

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    type/proposalThe new feature has not been accepted yet but needs to be discussed first.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions