cloud-init-dev team mailing list archive

Thread
Date

Re: [Merge] ~smoser/cloud-init:fix/1781094-ssh-deletekeys into cloud-init:master

To: Scott Moser <ssmoser2+ubuntu@xxxxxxxxx>
From: Scott Moser <ssmoser2+ubuntu@xxxxxxxxx>
Date: Wed, 01 Aug 2018 17:09:14 -0000
In-reply-to: <153132080100.15441.10126315471241997437.launchpad@ackee.canonical.com>
Reply-to: mp+349359@xxxxxxxxxxxxxxxxxx
Sender: bounces@xxxxxxxxxxxxx

I do not think we should leave this line in the file.
Thats confusing.  No other distro's cloud.cfg would
have such a line.


Diff comments:

> diff --git a/config/cloud.cfg.tmpl b/config/cloud.cfg.tmpl
> index 5619de3..1fef133 100644
> --- a/config/cloud.cfg.tmpl
> +++ b/config/cloud.cfg.tmpl
> @@ -24,8 +24,6 @@ disable_root: true
>  {% if variant in ["centos", "fedora", "rhel"] %}
>  mount_default_fields: [~, ~, 'auto', 'defaults,nofail', '0', '2']
>  resize_rootfs_tmp: /dev
> -ssh_deletekeys:   0
> -ssh_genkeytypes:  ~

if we left it as null, it would not generate any keys.
We need it to generate keys.

You are correct in that it will generate the default key
types for cloud-init, which will not necessarily be the
same as those in ssh-keygen service.

However, cloud-init will *remove* all ssh host keys that match
  /etc/ssh/ssh_host_*key*
So we wont' have stale keys sitting around.

>  ssh_pwauth:   0
>  
>  {% endif %}


-- 
https://code.launchpad.net/~smoser/cloud-init/+git/cloud-init/+merge/349359
Your team cloud-init commiters is requested to review the proposed merge of ~smoser/cloud-init:fix/1781094-ssh-deletekeys into cloud-init:master.

Follow ups

Re: [Merge] ~smoser/cloud-init:fix/1781094-ssh-deletekeys into cloud-init:master
From: Ryan Harper, 2018-08-01

References

[Merge] ~smoser/cloud-init:fix/1781094-ssh-deletekeys into cloud-init:master
From: Scott Moser, 2018-07-11