Y
Hacker News
new
|
ask
|
show
|
jobs
by
DaniloDias
2343 days ago
TL;DR: Antipattern: pointing web server config to any files based in /home.
1 comments
asveikau
2343 days ago
Not just that. Even if you don't make that mistake, having servers ssh into other hosts and leaving keys on them for this purpose means if one machine is compromised, others can be too. And they can use known_hosts to discover which ones.
link
arpa
2342 days ago
ssh -A is a thing. A risky thing, but so much better than keeping private keys on server.
link