[Bug 2673] Multiple ssh keys for a given server

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Mon Jan 30 21:02:22 AEDT 2017


https://bugzilla.mindrot.org/show_bug.cgi?id=2673

--- Comment #2 from Darren Tucker <dtucker at zip.com.au> ---
(In reply to George Shuklin from comment #0): 
> 1) server booting from golden image. Golden image has 'build-in'
> host ssh key which is changed after system configuration management
> application set up proper ssh key for server.

Use "ssh -o HostKeyAlias=golden-image" when connecting to the newly
imaged system until the keys are changed.  This also protects against
trivial MITM at that point (not from anyone with access to the image
though).

-- 
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list