Bugzilla – Bug 117673
import ssh-keys from another installation
Last modified: 2007-08-09 16:09:39 UTC
Not a bug, just an enhancement proposal: It would be nice when the installer is able to copy the ssh keys from another installation to the new installation, instead of generating new keys (to avoid message "WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!") The installer already detects other Linux installations (to add in grub-menu), then it should be easy to copy the ssh*key* . When it is a new installation, overwriting a old one, the ssh-keys should be copied to a ram-disk before formatting the old partition
That would be a security problem. From YaST/Installation point of view it will not be possible. Reassigning to the openssh maintainer.
I agree with Lukas, I don't think that it is good idea. You have to backup your keys by yourself if you do new installation. (Yast have to decide from partition will take these keys and have to understand syntax of /etc/ssh/sshd_config to decide which keys are used). Andreas, what do you think about it?
I think this is a good idea. Security team, do you have any issues with this?
I find it a good idea as well. You need to ask the user whether he wants to copy the ssh keys of course. In case of multiple partitions you need to ask from which partition as well. Just copy /etc/ssh/*key* preserving permissions.
To find proper keys you have to grep /etc/ssh/sshd_config by "HostKey" and snip appropriate record.
Let's add it - but I guess this is something for 10.2.
Stano, I think this is job for yast team, isn't it? When you like help with anythink, please tell me.
Something for the 10.2 timeframe.
This bug was fixed for 10.2...
... marking as duplicate of the remaining issue... *** This bug has been marked as a duplicate of bug 298798 ***