Secure Shell
Replacing server without having to update host key on connecting clients? Jan 30 2009 02:41PM
George Horvath (Scotia Capital) (George_Horvath scotiacapital com) (3 replies)
RE: Replacing server without having to update host key on connecting clients? Feb 02 2009 03:47PM
Paul Ryland (paul transversal com) (1 replies)
Re: Replacing server without having to update host key on connecting clients? Feb 02 2009 07:09PM
Boby Mocanasu (boby sknx org)
RE: Replacing server without having to update host key on connecting clients? Jan 30 2009 08:52PM
Pfister, Thomas P (pfister indiana edu) (1 replies)
RE: Replacing server without having to update host key on connecting clients? Jul 03 2009 06:48PM
George Horvath (Scotia Capital) (George_Horvath scotiacapital com)
Re: Replacing server without having to update host key on connecting clients? Jan 30 2009 07:56PM
Greg Wooledge (wooledg eeg ccf org)
On Fri, Jan 30, 2009 at 09:41:28AM -0500, George Horvath (Scotia Capital)
wrote:
> into this. We are using RSA host keys that get dumped on the client server

What's a "client server"?

> by the package install script. The new server will have the same IP address
> and hostname

Then copy the host keys over from the old server to the new one.

They're typically in /etc/ssh/ssh_host_*key* or /usr/local/etc/ssh_host_*key*
(the location is configured at compile time).

Make sure the permissions are correct on the new server. You don't want
the private keys to be readable.

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus