From Fedora Project Wiki
(New page: = ssh_host_keys - SOP = == Contact Information == Owner: Fedora Infrastructure Team Contact: #fedora-admin, sysadmin group Location: all Servers: all Purpose: Provides Known Hosts fil...) |
No edit summary |
||
Line 16: | Line 16: | ||
If you install a new server or change a host key. use ssh-keyscan. | If you install a new server or change a host key. use ssh-keyscan. | ||
<pre> | |||
ssh-keyscan -t rsa app1 | |||
# app1 SSH-2.0-OpenSSH_4.3 | # app1 SSH-2.0-OpenSSH_4.3 | ||
app1 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtabx7H5RFxs/O2WPd0Hh9V302mKPXEF1N+FifLZj3WIbm757Lh6sUZpzBAQqi+MaOtXnFFs6TDemblPRNPNTcXBNtlVM/EBd80axN69qHHxvUBuozE5Rzpo1oSFwVzL/Y0lAsyzC81xEftXo+S/at+vGXpntnt5p/LtmpqVr/7kxjRZLhOqtxiPg0M0mmCu68DVMxWhlYjQDGyVNW1GrzaqBUWx3AdbJQsJpFK/bmybDD2bxnjWXJdtgelZaanpoauPlbad5ORsXZSNHSxzcS0INFJC2xxrXpvT8H84T11659pQUAkic3S4LmscjeVc5m7XEFNIhwAUJVq9uhdtYAQ== | app1 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtabx7H5RFxs/O2WPd0Hh9V302mKPXEF1N+FifLZj3WIbm757Lh6sUZpzBAQqi+MaOtXnFFs6TDemblPRNPNTcXBNtlVM/EBd80axN69qHHxvUBuozE5Rzpo1oSFwVzL/Y0lAsyzC81xEftXo+S/at+vGXpntnt5p/LtmpqVr/7kxjRZLhOqtxiPg0M0mmCu68DVMxWhlYjQDGyVNW1GrzaqBUWx3AdbJQsJpFK/bmybDD2bxnjWXJdtgelZaanpoauPlbad5ORsXZSNHSxzcS0INFJC2xxrXpvT8H84T11659pQUAkic3S4LmscjeVc5m7XEFNIhwAUJVq9uhdtYAQ== | ||
</pre> | |||
Copy the non-commented line and place it in the puppet repo under: | Copy the non-commented line and place it in the puppet repo under: | ||
<pre> | |||
puppet/modules/ssh/files/ssh_known_hosts | puppet/modules/ssh/files/ssh_known_hosts | ||
</pre> | |||
Please put them in alphabetical order. | Please put them in alphabetical order. |
Revision as of 21:12, 10 December 2008
ssh_host_keys - SOP
Contact Information
Owner: Fedora Infrastructure Team
Contact: #fedora-admin, sysadmin group
Location: all
Servers: all
Purpose: Provides Known Hosts file that is globally deployed.
Replacing Key
If you install a new server or change a host key. use ssh-keyscan.
ssh-keyscan -t rsa app1 # app1 SSH-2.0-OpenSSH_4.3 app1 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtabx7H5RFxs/O2WPd0Hh9V302mKPXEF1N+FifLZj3WIbm757Lh6sUZpzBAQqi+MaOtXnFFs6TDemblPRNPNTcXBNtlVM/EBd80axN69qHHxvUBuozE5Rzpo1oSFwVzL/Y0lAsyzC81xEftXo+S/at+vGXpntnt5p/LtmpqVr/7kxjRZLhOqtxiPg0M0mmCu68DVMxWhlYjQDGyVNW1GrzaqBUWx3AdbJQsJpFK/bmybDD2bxnjWXJdtgelZaanpoauPlbad5ORsXZSNHSxzcS0INFJC2xxrXpvT8H84T11659pQUAkic3S4LmscjeVc5m7XEFNIhwAUJVq9uhdtYAQ==
Copy the non-commented line and place it in the puppet repo under:
puppet/modules/ssh/files/ssh_known_hosts
Please put them in alphabetical order.