SSH known hosts Infrastructure SOP

From FedoraProject

(Difference between revisions)
Jump to: navigation, search
(New page: = ssh_host_keys - SOP = == Contact Information == Owner: Fedora Infrastructure Team Contact: #fedora-admin, sysadmin group Location: all Servers: all Purpose: Provides Known Hosts fil...)
 
(fix URL)
 
(9 intermediate revisions by 4 users not shown)
Line 1: Line 1:
= ssh_host_keys - SOP =
+
{{header|infra}}
 +
{{shortcut|ISOP:KNOWNHOSTS}}
  
== Contact Information ==
 
Owner: Fedora Infrastructure Team
 
  
Contact: #fedora-admin, sysadmin group
+
This SOP has moved to the fedora Infrastructure SOP git repo. Please see the current document at: http://infrastructure.fedoraproject.org/infra/docs/sshknownhosts.txt
 +
For changes, questions or comments, please contact anyone in the Fedora Infrastructure team.
  
Location: all
 
  
Servers: all
+
[[Category:Infrastructure SOPs]]
 
+
Purpose: Provides Known Hosts file that is globally deployed.
+
 
+
== Replacing Key ==
+
 
+
If you install a new server or change a host key.  use ssh-keyscan.
+
 
+
{{{ ssh-keyscan -t rsa app1
+
# app1 SSH-2.0-OpenSSH_4.3
+
app1 ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAtabx7H5RFxs/O2WPd0Hh9V302mKPXEF1N+FifLZj3WIbm757Lh6sUZpzBAQqi+MaOtXnFFs6TDemblPRNPNTcXBNtlVM/EBd80axN69qHHxvUBuozE5Rzpo1oSFwVzL/Y0lAsyzC81xEftXo+S/at+vGXpntnt5p/LtmpqVr/7kxjRZLhOqtxiPg0M0mmCu68DVMxWhlYjQDGyVNW1GrzaqBUWx3AdbJQsJpFK/bmybDD2bxnjWXJdtgelZaanpoauPlbad5ORsXZSNHSxzcS0INFJC2xxrXpvT8H84T11659pQUAkic3S4LmscjeVc5m7XEFNIhwAUJVq9uhdtYAQ==
+
}}}
+
 
+
Copy the non-commented line and place it in the puppet repo under:
+
 
+
{{{
+
puppet/modules/ssh/files/ssh_known_hosts
+
}}}
+
 
+
Please put them in alphabetical order.
+

Latest revision as of 08:02, 7 July 2013

Infrastructure InfrastructureTeamN1.png
Shortcut:
ISOP:KNOWNHOSTS


This SOP has moved to the fedora Infrastructure SOP git repo. Please see the current document at: http://infrastructure.fedoraproject.org/infra/docs/sshknownhosts.txt For changes, questions or comments, please contact anyone in the Fedora Infrastructure team.