Known Hosts Management¶
View and manage stored SSH server host keys.
Open: Settings (Cmd+,) → Known Hosts tab
Overview¶
When you connect to an SSH server, its host key is stored to verify the server's identity on future connections. This prevents man-in-the-middle attacks.
Storage location: ~/Library/Application Support/in.rs.olujic.StormTunnel/known_hosts
The file uses standard OpenSSH format and works with other SSH tools.
Viewing Host Keys¶
Each entry shows:
| Field | Description |
|---|---|
| Hostname | Server address (with port if non-standard) |
| Key type | Algorithm (ED25519, ECDSA, RSA) |
| Fingerprint | First 24 characters for identification |
Managing Host Keys¶
Refresh List¶
Click the refresh button (circular arrow) to reload from disk. Use this after:
- Manual edits to the known_hosts file
- SSH connections made outside StormTunnel
Delete a Host Key¶
- Find the host in the list
- Click the trash icon
- Confirm deletion
Security Note
After deletion, the next connection to that server will prompt you to verify and accept its host key again.
Key Types¶
| Type | Status |
|---|---|
| ED25519 | Recommended - modern, fast, secure |
| ECDSA | Good - widely compatible |
| RSA | Legacy - universal support, use 2048+ bits |
Troubleshooting¶
Empty List¶
Normal for new installations. Host keys appear after your first SSH connections.
Host Key Changed Warning¶
If a server's key changes unexpectedly:
- Verify with your administrator that the server was legitimately updated
- If confirmed, delete the old key from this list
- Reconnect to accept the new key
Security Alert
An unexpected host key change could indicate a security threat. Always verify before accepting.
Permission Errors¶
Check that StormTunnel has read/write access to: ~/Library/Application Support/in.rs.olujic.StormTunnel/
Related¶
- SSH Key Management - Manage your SSH keys
- Authentication - SSH authentication options
- Settings - Known hosts settings reference