SUNWssh lacks support for RFC4255 (DNSSEC publication of SSH pubkey fingerprints)
SUNWssh doesn't implement this [[RFC|https://www.ietf.org/rfc/rfc4225.txt]]. Back when DNSSEC deployment was just a glint in IETF's eye, not passing on implementation was one thing, but, thanks to Dan Kaminsky, DNSSEC deployment is cruising on along. Opening bid is to add support for functionality presented via:
- -g operand to ssh-keygen, which outputs key fingerprints in a format
- VerifyHostKeyDNS in ssh_config
Code would be ported from OpenSSH.