(www.agwa.name)

637 points h1x | 1 comments | 13 Nov 21 09:13 UTC | HN request time: 0.233s | source

Show context

kybernetyk ◴[13 Nov 21 10:48 UTC] No.29208914[source]▶

>>29208518 (OP) #

So a little offtopic but I’m still curious: how do you handle multiple machines and SSH keys? I mean do you run ssh-keygen on a new machine and have for each computer a separate key pair or do you have one key pair that you copy on every new machine?

I have seen both and using one key pair looks very convenient but also makes me feel a little uneasy.

I myself have a key pair for each of my machines.

How do you handle it?

replies(5): >>29208933 #>>29209007 #>>29209086 #>>29209300 #>>29209370 #

1. visualphoenix ◴[13 Nov 21 12:28 UTC] No.29209300[source]▶

>>29208914 #

In the past I’ve used a certificate authority for ssh setup as one nice way to stop the proliferation of ssh keys. The other route is to use one hardware key fob with a gpg identity on it and use that as your global method of access.

↑

Sign arbitrary data with your SSH keys