[ubuntu-uk] Remote support for family & friends
Alan Pope
alan at popey.com
Fri Mar 25 10:22:06 UTC 2011
On 25 March 2011 09:41, Jon Spriggs <jon at sprig.gs> wrote:
> You can share the same private key around all the machines you own and
> trust,
That's not wise. If you put your private key on all your machines you
trust then I only need to break into one of them to gain access to
every machine your public key is on, and you will have to revoke that
one key, meaning you can't ssh to anywhere until you generate new
keys.
More sensible is to generate a separate keypair on each client
machine, and put the public keys on all the necessary targets
machines. That way if I get hold of one of your computers, you only
need to revoke that keypair from all the targets you ssh to, and can
carry on using your other machines' keypairs with no worries.
Al.
More information about the ubuntu-uk
mailing list