Date: Tue, 6 Feb 2007 18:21:09 +1100 From: Peter Jeremy <peterjeremy@optushome.com.au> To: Arone Silimantia <aronesimi@yahoo.com> Cc: freebsd-security@freebsd.org Subject: Re: post-reload SSH server key transfer ... comments ? Message-ID: <20070206072108.GC831@turion.vk2pj.dyndns.org> In-Reply-To: <20070206032927.GB55215@lor.one-eyed-alien.net> References: <14020.63738.qm@web58603.mail.re3.yahoo.com> <20070206032927.GB55215@lor.one-eyed-alien.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--VS++wcV0S1rZb1Fb
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On 2007-Feb-05 21:29:27 -0600, Brooks Davis wrote:
>On Mon, Feb 05, 2007 at 05:51:38PM -0800, Arone Silimantia wrote:
>> So, am I correct that I can just tar up /etc/ssh on the old system and
>> use it to overwrite /etc/ssh on the new system, and that's that ? No
>> warning message or other problems ?
>
>Yes. Actually, the files you need are "/etc/ssh/*_key /etc/ssh/*_key.pub".
>The others may contain settings you want to move, but don't effect the
>machine's ssh identity.
I'll go further and say that you are unlikely to want to copy the
remaining files. In particular, you should merge your local changes
to /etc/ssh/ssh{,d}_config because just copying those files across
is quite likely to give the newer ssh a degree of indigestion.
--=20
Peter Jeremy
--VS++wcV0S1rZb1Fb
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (FreeBSD)
iD8DBQFFyCxk/opHv/APuIcRApLQAJ0QsnWlebfxO3nDo0Mpq+EJUcG6EgCglVbl
fav01GFD9Tu9x8LOxfIkLm4=
=6ouq
-----END PGP SIGNATURE-----
--VS++wcV0S1rZb1Fb--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070206072108.GC831>