Archive for October 10th, 2013

SSH known_hosts Management with CFEngine

By jbayer - Last updated: Thursday, October 10, 2013

For small sites, a changed Secure Shell (SSH) host key poses only minor problems, as only a few systems might be affected. At larger sites, the host key data should be maintained with configuration management, so that any SSH host key changes can be propogated throughout the site. CFEngine can maintain a global ssh_known_hosts file for OpenSSH. Host Key Collection with ssh-keyscan The […]