On 11-07-26 at 12:03pm, Paul Wise wrote: > One big problem with existing live images, VM images, "cloud" images > and images for mobile/tablet devices outside of Debian has been the > provision of OpenSSH private keys within the image file. Obviously > this is a huge fail. > > I was talking with Daniel Baumann about how Debian Live approaches > this problem and I think he said Debian Live has some scripts to > remove them after installation. > > We were thinking that it might be nice to add support to > openssh-server for installing the package, not generating the host > keys and then generating them on first boot. debconf pre-seeding could > be one way to do that, but it would be quite specific and a more > general solution might be desirable. > > So, I was wondering if anyone has any ideas on this topic?
Uhm, I did have an idea for this, but have forgotten it again now. Cc'ing Hector who might recall our discussion on this exact issue a few weeks ago... - Jonas -- * Jonas Smedegaard - idealist & Internet-arkitekt * Tlf.: +45 40843136 Website: http://dr.jones.dk/ [x] quote me freely [ ] ask before reusing [ ] keep private
signature.asc
Description: Digital signature
