diff --git a/hosts/hydra/configuration.nix b/hosts/hydra/configuration.nix
index 4edcdf93..700994ff 100644
--- a/hosts/hydra/configuration.nix
+++ b/hosts/hydra/configuration.nix
@@ -6,6 +6,7 @@
     ./hydra.nix
     ./cache.nix
     ../../lib/hq.nix
+    ../../lib/known-hosts.nix
     ../../lib/emery.nix
     ../../lib/buildfarmer.nix
     ../../lib/yggdrasil.nix
diff --git a/hosts/hydra/ssh_host_ed25519_key.pub b/hosts/hydra/ssh_host_ed25519_key.pub
new file mode 100644
index 00000000..41573915
--- /dev/null
+++ b/hosts/hydra/ssh_host_ed25519_key.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDhurL/sxsXRglKdLfiWIcK+iqpyhGrGt/MoBODsgvig root@adc
diff --git a/hosts/hydra/ssh_host_rsa_key.pub b/hosts/hydra/ssh_host_rsa_key.pub
new file mode 100644
index 00000000..1438102f
--- /dev/null
+++ b/hosts/hydra/ssh_host_rsa_key.pub
@@ -0,0 +1 @@
+ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDfyXyzx7SOrRs1jwsJ/wIazY76O70M2YxZlh1JOBtejKdcuvLRiCZlbySPbD0kE9d1e/2T2gfJyW9T+20jciqqkVNJNrnUKkIe4gwklOkH3+x6+dIevtgbkuPEKV+4zFWIFrCj+uYKIHJeOFab+aANlSSYmFd7dVmF+DIzMOwUZvlppjv6q4iGNVyq198mfc1MDJDqkA6mIjFngpY03Ayh7SNtlR+CVlY827xW5Wh4M93bMvApz5hMxVTyV7pTigN+zMxrLoC/tKWPT24Rra1SihlLlFUlo5FQPPAdPJ8mkdAy5nm7tsBoD9u7NLSr+32/4v3ow+FnsVW/udLHalc99PMHjeIDAS0p5HC9UZXuiAzbGpNDtv25JmNcP2W+8PgKWuM7HGv1oTy9fDM2uaH2/XxWZAmsneCl51hz+nb6FZek2qQutjOA6mueQybuH4wT54irUkLUTx55wiUQ96MzeC0hWJpEXB8Xx7kvKwvWIkHq8fB8mvPZFg13Mw8LG39J6c0e7XgUU1rIjcqud0ynHIOO0bcVIIGT2fXQLPweaTntErszqiu+VyXyNwVU8/NbvNiezneM89yHYp5zCw3UbzsfsDs4M8vhOMHWH3YPfqCR12RwrcmySR+Z22FpgrsQHNlY3tRDnFb+gm27yFrWC0VzAz4t60rqpfgaQXwiXw== root@adc
diff --git a/hosts/pulsebert/ssh_host_ed25519_key.pub b/hosts/pulsebert/ssh_host_ed25519_key.pub
new file mode 100644
index 00000000..e2b3269f
--- /dev/null
+++ b/hosts/pulsebert/ssh_host_ed25519_key.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAnEWn/8CKIiCtehh6Ha3XUQqjODj0ygyo3aGAsFWgfG root@pulsebert
diff --git a/hosts/pulsebert/ssh_host_rsa_key.pub b/hosts/pulsebert/ssh_host_rsa_key.pub
new file mode 100644
index 00000000..789465d7
--- /dev/null
+++ b/hosts/pulsebert/ssh_host_rsa_key.pub
@@ -0,0 +1 @@
+ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDkiECNp6xqmZHqyl+Z+klMJeiowXnQCaEna+PwsL7uWr3YhcRfVUlFM8/aN2FXHAiYePViLXVVYG2vEWW6K5SaC5abbL3zpTKtv33vW29fcrDJElCuV3WEZ+3QEyaq+c4A/mVoxsFhUsotvAmeuBe9wo2ZoGLDltETgyXMi3llTt3kG1TFdBgGNQlextubUnAw5ulqo/72OhlVOiBm4EsEXW16okkdYQ1bx1q/M24aTb9EhcUX4Z/q4zVs+pJ0AoiSw9Wal3kZUsTIKgrdaBJvr9IWrBZ5090RjbeMtT9nqcP6ZY0CEhlcpLsFCcYCt5wCuTudu7dxU2uavCcTgtO62vFdYKaasu6SGilBTs3prpZMhVnfi6VrgCcd9/7ZXgu2pxJvkPPRoLXLysfT5BvOy+YwkjA2ebNsjsaN/aB/VFmnnYZfdgDhdpuUkyDiO/kc2y1ZYzZp6vlUAtUWhgGVzyXjT9bz21eoF89Vvhaw2guQDjHk2tPqLf95iKHmY4YQ35sbkw4cRy8v1PP0bmZHgQguxWgRNRMxEo9quCHBYnsZrApKe5sUKSE/9WqI378x7+VGKDvEdMHyvJTw8VHvzuBKr/SONFn67ZC50uiMMjasnuAZYbVtcrkL09ITosev8Y/hxFmehL4wud5EDdOTTjYsIXUOW+ZTp0HrOW07wQ== root@pulsebert
diff --git a/hosts/server7/configuration.nix b/hosts/server7/configuration.nix
index cb6bd60c..9a3b4966 100644
--- a/hosts/server7/configuration.nix
+++ b/hosts/server7/configuration.nix
@@ -8,6 +8,7 @@ in {
     ../../lib/default-gateway.nix
     ../../lib/emery.nix
     ../../lib/buildfarmer.nix
+    ../../lib/known-hosts.nix
     ../../lib/yggdrasil.nix
     ./containers
     ./hardware-configuration.nix
diff --git a/hosts/storage-ng/ssh_host_ed25519_key.pub b/hosts/storage-ng/ssh_host_ed25519_key.pub
new file mode 100644
index 00000000..5f9794a6
--- /dev/null
+++ b/hosts/storage-ng/ssh_host_ed25519_key.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMeg5ojU7U8+Lx824y+brazVJ007mEJDM7C7aUruOWGP root@storage-ng
diff --git a/hosts/storage-ng/ssh_host_rsa_key.pub b/hosts/storage-ng/ssh_host_rsa_key.pub
new file mode 100644
index 00000000..4056a772
--- /dev/null
+++ b/hosts/storage-ng/ssh_host_rsa_key.pub
@@ -0,0 +1 @@
+ssh-rsa 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 root@storage-ng
diff --git a/lib/known-hosts.nix b/lib/known-hosts.nix
new file mode 100644
index 00000000..b04a8cf0
--- /dev/null
+++ b/lib/known-hosts.nix
@@ -0,0 +1,14 @@
+{ ... }: {
+  programs.ssh.knownHosts = let
+    hostNames = [ "hydra" "pulsebert" "server7" "hydra" ];
+    f = name: {
+      inherit name;
+      value = {
+        hostNames = [ name (name + ".hq.c3d2.de") ];
+        publicKeyFile = ../hosts + "/${name}/ssh_host_ed25519_key.pub";
+      };
+    };
+    hosts = map f hostNames;
+  in builtins.listToAttrs hosts;
+
+}