On Mon, Jul 4, 2011 at 10:53 AM, Simon Males <s...@sime.net.au> wrote: > I feel that it's best/better practice to regenerate OpenSSH host keys > on a clonsed/replica server. > > The closest thing to a reason I have is that keys are meant to be unique? > > http://www.cyberciti.biz/faq/howto-regenerate-openssh-host-keys/ > > Is my logic in check?
Yes, it is. The identification for your host should be unique on a network, and so sharing an identity with another host, doesn't allow it to be unique. If it's not unique it may make identification of that host a bit more complex. Chris- -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
