fsebugoutzone.org:9999

       Post AbYUx8dMuEb3iqz7WC by SebasTEAan@emacs.ch
 (DIR) More posts by SebasTEAan@emacs.ch
 (DIR) Post #AbYP24CYDKjvhLPM7E by Ethanol6@linuxrocks.online
       2023-11-07T05:13:14Z
       
       0 likes, 0 repeats
       
       Looking for tips on ssh key management. Is there such a thing as &quot;best practice&quot; for ssh keys? I often run into the error &quot;too many login attempts&quot; because I have a key for every machine/server I need to connect to and ssh just tries all the keys in ~/.ssh and hits the attempt threshold before trying the right key. Am I being too lazy by not using -i or do I have too many keys? Is there other ways of organizing these? #ssh #openssh #keys #cryptography #security
       
 (DIR) Post #AbYP259kfE5wex6dOK by yisraeldov@linuxrocks.online
       2023-11-07T05:51:07Z
       
       0 likes, 0 repeats
       
       @Ethanol6 What, you are doing something wrong.  You should have 1 private key, and you copy the public key to every server you want to connect to. There is a command to help you with this `ssh-copy-id`.
       
 (DIR) Post #AbYRlFy3Vw7T87Itto by Ethanol6@linuxrocks.online
       2023-11-07T06:21:42Z
       
       0 likes, 0 repeats
       
       @yisraeldov Yeah, I thought that&#39;s what I should do but also thought that if a key ever got compromised, everything would be compromised.
       
 (DIR) Post #AbYUx8dMuEb3iqz7WC by SebasTEAan@emacs.ch
       2023-11-07T06:28:10Z
       
       0 likes, 0 repeats
       
       @Ethanol6 @yisraeldov one key per server is best practice. Just use .ssh/config to configure which server uses which key: https://phoenixnap.com/kb/ssh-config
       
 (DIR) Post #AbYUx9KyI7TVu5NwTw by yisraeldov@linuxrocks.online
       2023-11-07T06:57:26Z
       
       0 likes, 0 repeats
       
       @SebasTEAan @Ethanol6 Can you expand on &quot;Key Power Server&quot; ?
       
 (DIR) Post #AbZSYVOf8EliKXBzxA by Ethanol6@linuxrocks.online
       2023-11-07T18:05:12Z
       
       0 likes, 0 repeats
       
       @yisraeldov @SebasTEAan typo... &quot;key per server&quot; makes sense.
       
 (DIR) Post #AbZWUYDV6ZPpjbLElU by yisraeldov@linuxrocks.online
       2023-11-07T18:49:14Z
       
       0 likes, 0 repeats
       
       @Ethanol6 @SebasTEAan Why would you consider that best practice?
       
 (DIR) Post #AbZbY0zf4NHZcjL6wq by SebasTEAan@emacs.ch
       2023-11-07T19:42:36Z
       
       0 likes, 0 repeats
       
       @yisraeldov @Ethanol6 Well mainly out makes sure that when one key is compromised, not all servers are effected.