[lug] Curious About /etc/ssh/keys

D. Stimits stimits at comcast.net
Thu Dec 3 11:44:20 MST 2020



>     On 12/03/2020 11:35 AM John Hernandez <jph at jph.net> wrote:
>      
>      
>     In both Ubuntu and Fedora, I think that is handled as a post-install hook by the package system if/when the SSH server package gets installed.  So that means you should get new, unique host keys for fresh SSH server installs.
>      
> 
Thanks, that is what I was hoping. I still think back to Slackware (wonder if anyone still maintains or uses that) when the packages were tar.gz :P So many distributions and package systems out there now.

>     On Thu, Dec 3, 2020 at 11:17 AM D. Stimits < stimits at comcast.net mailto:stimits at comcast.net > wrote:
> 
>         > > 
> >         Hi,
> >          
> >         I am curious about the generation of the keys for identifying a specific host under "/etc/ssh/...various keys...". There are all flavors of Linux distributions, and different package management systems. Does anyone happen to know if it is "traditional" (or at least common) to have the package generate new random keys for each machine, such that installing several systems won't leave all systems with the same key?
> >          
> >         Basically it makes sense to have those keys randomly generated at the time of installing, and mostly I am thinking of Ubuntu and Fedora, but can anyone here think of any distributions where installing many machines would leave them all with the same key? Or does this seem to follow the logical idea of pseudo random key generation during system install?
> >          
> >         Thanks!
> >         _______________________________________________
> >         Web Page:  http://lug.boulder.co.us
> >         Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> >         Join us on IRC:http://irc.hackingsociety.org port=6667 channel=#hackingsociety
> > 
> >     >     _______________________________________________
>     Web Page: http://lug.boulder.co.us
>     Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
>     Join us on IRC: irc.hackingsociety.org port=6667 channel=#hackingsociety
> 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20201203/6dc9ed5e/attachment.html>


More information about the LUG mailing list