/etc/ssh 中的 ssh 密钥在启动时不断重新生成

Question

在CentOS上艰难地配置SSH服务器后，由于不断重新生成新密钥，我发现了/etc/sysconfig/sshd包含以下内容的文件

# Configuration file for the sshd service.

# The server keys are automatically generated if they are missing.
# To change the automatic creation uncomment and change the appropriate
# line. Accepted key types are: DSA RSA ECDSA ED25519.
# The default is "RSA ECDSA ED25519"

AUTOCREATE_SERVER_KEYS=""
# AUTOCREATE_SERVER_KEYS="RSA ECDSA ED25519"

# Do not change this option unless you have hardware random
# generator and you REALLY know what you are doing

#SSH_USE_STRONG_RNG=0
SSH_USE_STRONG_RNG=1

在我注释掉之后AUTOCREATE_SERVER_KEYS=""，SSH服务器在启动时停止重新生成密钥

然而在 Debian 上，我不需要做任何事情，因为如果密钥丢失或在启动期间密钥不会重新生成。

Answer 1

在CentOS上艰难地配置SSH服务器后，由于不断重新生成新密钥，我发现了/etc/sysconfig/sshd包含以下内容的文件

# Configuration file for the sshd service.

# The server keys are automatically generated if they are missing.
# To change the automatic creation uncomment and change the appropriate
# line. Accepted key types are: DSA RSA ECDSA ED25519.
# The default is "RSA ECDSA ED25519"

AUTOCREATE_SERVER_KEYS=""
# AUTOCREATE_SERVER_KEYS="RSA ECDSA ED25519"

# Do not change this option unless you have hardware random
# generator and you REALLY know what you are doing

#SSH_USE_STRONG_RNG=0
SSH_USE_STRONG_RNG=1

在我注释掉之后AUTOCREATE_SERVER_KEYS=""，SSH服务器在启动时停止重新生成密钥

然而在 Debian 上，我不需要做任何事情，因为如果密钥丢失或在启动期间密钥不会重新生成。

/etc/ssh 中的 ssh 密钥在启动时不断重新生成

答案1

相关内容