From 4f38e99c629f60d9524d1cf23efa7ab927ac9cf4 Mon Sep 17 00:00:00 2001 From: elijah Date: Tue, 23 Oct 2012 03:52:22 -0700 Subject: minor change to notes --- DEVNOTES | 20 +------------------- 1 file changed, 1 insertion(+), 19 deletions(-) (limited to 'DEVNOTES') diff --git a/DEVNOTES b/DEVNOTES index 5ba2854..6890a66 100644 --- a/DEVNOTES +++ b/DEVNOTES @@ -84,19 +84,7 @@ invoke puppet ssh ================================ -fingerprints --------------------- - -ssh-keygen -lf tells you the fingerprint of an encryption key - - ls -1 /etc/ssh/*key* - /etc/ssh/ssh_host_dsa_key - /etc/ssh/ssh_host_dsa_key.pub - /etc/ssh/ssh_host_rsa_key - /etc/ssh/ssh_host_rsa_key.pub - -fetch the public host ida of a bunch of nodes: - ssh-keyscan -t rsa +http://mostlyobvio.us/2012/06/optimize-your-ssh-experience/ ssh certificate authority ---------------------------------- @@ -119,17 +107,11 @@ instead: home$ ssh -o 'ProxyCommand ssh you@hop1 nc %h %p' ssh you@hop2 hop2$ - - known_hosts ---------------- man sshd, search for known_hosts - -StrictHostKeyChecking="yes" - @revoked -- should we put revoked keys in known_hosts, and when/how... - @cert-authority -- should we use it? ruby -- cgit v1.2.3