On Mon, Jul 4, 2011 at 10:53 AM, Simon Males s...@sime.net.au wrote:
I feel that it's best/better practice to regenerate OpenSSH host keys
on a clonsed/replica server.
The closest thing to a reason I have is that keys are meant to be unique?
http://www.cyberciti.biz/faq/howto-regenerate-openssh-host-keys/
Is my logic in check?
Yes, it is. The identification for your host should be unique on a
network, and so sharing an identity with another host, doesn't allow
it to be unique. If it's not unique it may make identification of
that host a bit more complex.
Chris-
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html