diff --git a/ssh/.ssh/conf/config.ssh b/ssh/.ssh/conf/config.ssh
deleted file mode 100644
index 1768d6c..0000000
--- a/ssh/.ssh/conf/config.ssh
+++ /dev/null
@@ -1,5 +0,0 @@
-# Send a keepalive package every 15 seconds without data
-ServerAliveInterval 15
-
-# conserve some bandwidth at the cost of processing power
-Compression yes
diff --git a/ssh/.ssh/config b/ssh/.ssh/config
index 2d4b429..628ec7c 100644
--- a/ssh/.ssh/config
+++ b/ssh/.ssh/config
@@ -1,2 +1,7 @@
-Include ~/.ssh/conf/config.ssh
-Include ~/.ssh/conf/hosts.ssh
+# Send a keepalive package every 15 seconds without data
+ServerAliveInterval 15
+
+# conserve some bandwidth at the cost of processing power
+Compression yes
+
+Include ~/.ssh/hosts
diff --git a/ssh/.ssh/scripts/check-fingerprint b/ssh/.ssh/scripts/check-fingerprint
new file mode 100755
index 0000000..fcbdf4a
--- /dev/null
+++ b/ssh/.ssh/scripts/check-fingerprint
@@ -0,0 +1,21 @@
+#!/bin/bash
+# from: https://awbmilne.github.io/blog/SSH-Host-Fallback/
+# Takes 2 arguments: a hostname and an ssh fingerprint
+# Retrieves all fingerprints from hostname and compares
+# to see if the fingerprint passed in is part of them.
+# If it is, returns true; if not, false.
+# Can be used for more secure matching on hostname availability
+# in sshconfig than e.g. nc ip matching.
+#
+# To find your keys fingerprint, one option is just connecting
+# via `ssh -v` and looking for the fingerprint there.
+
+fingerprints=$(ssh-keygen -lf <(ssh-keyscan "$1" 2>/dev/null))
+
+for fingerprint in $fingerprints; do
+    if [ "$fingerprint" == "$2" ]; then
+        exit 0
+    fi
+done
+
+exit 1