Displaying 2 results from an estimated 2 matches for "hardcoded_private_key".
2015 Apr 22
2
shared private key
...y is setup like this...
command="cat ~/.ssh/id_rsa.pub" ssh-rsa AAAA...
I'm looking for a secure way to get a user to share their public key
through SSH which can be invoked from an installer on another
host...for example...
# ssh-keyscan server.local > .ssh/known_hosts
# ssh -i hardcoded_private_key server.local > .ssh/authorized_keys
Of course in this installer the key fingerprints will be examined by
the user before any keys are actually put in known hosts and
authorized_keys.
Is this secure? Is there a better way?
Thanks in advance,
Reuben
2015 Apr 22
2
shared private key
...restricting options.
>
>
>> I'm looking for a secure way to get a user to share their public key
>> through SSH which can be invoked from an installer on another
>> host...for example...
>>
>> # ssh-keyscan server.local> .ssh/known_hosts
>> # ssh -i hardcoded_private_key server.local> .ssh/authorized_keys
>>
>> Of course in this installer the key fingerprints will be examined by
>> the user before any keys are actually put in known hosts and
>> authorized_keys.
>>
>> Is this secure? Is there a better way?
>
> I see no...