Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 6 Feb 2007 18:21:09 +1100
From:      Peter Jeremy <peterjeremy@optushome.com.au>
To:        Arone Silimantia <aronesimi@yahoo.com>
Cc:        freebsd-security@freebsd.org
Subject:   Re: post-reload SSH server key transfer ... comments ?
Message-ID:  <20070206072108.GC831@turion.vk2pj.dyndns.org>
In-Reply-To: <20070206032927.GB55215@lor.one-eyed-alien.net>
References:  <14020.63738.qm@web58603.mail.re3.yahoo.com> <20070206032927.GB55215@lor.one-eyed-alien.net>

next in thread | previous in thread | raw e-mail | index | archive | help

--VS++wcV0S1rZb1Fb
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On 2007-Feb-05 21:29:27 -0600, Brooks Davis wrote:
>On Mon, Feb 05, 2007 at 05:51:38PM -0800, Arone Silimantia wrote:
>> So, am I correct that I can just tar up /etc/ssh on the old system and
>> use it to overwrite /etc/ssh on the new system, and that's that ? No
>> warning message or other problems ?
>
>Yes.  Actually, the files you need are "/etc/ssh/*_key /etc/ssh/*_key.pub".
>The others may contain settings you want to move, but don't effect the
>machine's ssh identity.

I'll go further and say that you are unlikely to want to copy the
remaining files.  In particular, you should merge your local changes
to /etc/ssh/ssh{,d}_config because just copying those files across
is quite likely to give the newer ssh a degree of indigestion.

--=20
Peter Jeremy

--VS++wcV0S1rZb1Fb
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (FreeBSD)

iD8DBQFFyCxk/opHv/APuIcRApLQAJ0QsnWlebfxO3nDo0Mpq+EJUcG6EgCglVbl
fav01GFD9Tu9x8LOxfIkLm4=
=6ouq
-----END PGP SIGNATURE-----

--VS++wcV0S1rZb1Fb--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070206072108.GC831>