←back to thread

Sign arbitrary data with your SSH keys

(www.agwa.name)
637 points h1x | 2 comments | 13 Nov 21 09:13 UTC | HN request time: 0.415s | source
Show context
kybernetyk ◴[13 Nov 21 10:48 UTC] No.29208914[source]
So a little offtopic but I’m still curious: how do you handle multiple machines and SSH keys? I mean do you run ssh-keygen on a new machine and have for each computer a separate key pair or do you have one key pair that you copy on every new machine?

I have seen both and using one key pair looks very convenient but also makes me feel a little uneasy.

I myself have a key pair for each of my machines.

How do you handle it?

replies(5): >>29208933 #>>29209007 #>>29209086 #>>29209300 #>>29209370 #
1. rkeene2 ◴[13 Nov 21 10:55 UTC] No.29208933[source]
I use two keypairs, but with no ability to read the private key (smartcard).
replies(1): >>29209263 #
2. visualphoenix ◴[13 Nov 21 12:19 UTC] No.29209263[source]
This is what I do as well. Yubikey configured as a smartcard running gpg-agent with enable-ssh-support.