Hey folks, I have multiple VMs and personal machines across multiple cloud providers and I’m beginning to get frustrated with ssh key management. Each personal machine has it’s own key so if I lose it or it’s compromised I can just remove the key from the vms but it’s starting to get tedious making sure everything is up to date and any new keys are added.

Are there any solutions out there that would help?

  • buhala@sopuli.xyz
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    I suppose I’m questioning why you’d need several SSH keys to begin with. The only place you should have your private ones is on highly secure places (mine are on my password manager and pc, encrypted). Would there ever be a case for you where only one of them gets breached? Surely if someone gains access to either of those places that’s all your keys gone.

    Asking because managing one key is easier than managing tons for me.

    • Mike@lemmy.remotelab.ukOP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      I guess it’s just the way I’ve been using it for years and years. I’ve been remote working for abour a decade so I’ve been in places where it could have been possible to grab my keys if I’d left a laptop unlocked, not likely though.

    • dogmuffins@lemmy.mlM
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      This. You can either have key-per-device or key-per-person. I don’t really share access with anyone so key-per-person (just 1 for me) is the way.

      If I did have multiple keys, they would be kept in the same place, so anyone getting access to one would get access to all of them anyway.