|
|
|
|
|
|
by prussian
1186 days ago
|
|
|
Unless it has changed recently, you can't have a trust chain of OpenSSH certs though so it's cumbersome that your signing key is not only the root ca but also basically has to be 24/7 accessible to sign any server/client you want to bring up. |
|
|