Skip to content

Commit

Permalink
"ssh-keygen -A -m PEM" does not work.
Browse files Browse the repository at this point in the history 
random-archer#83

The manpage of ssh-keygen describes option "-A" as
"For each of the key types (rsa, dsa, ecdsa and ed25519) for which host keys do not exist, generate the host keys [...]."

But since the host keys in /etc/ssh/ already exists (because they are generated on the first invocation of sshd), nothing will be generated/regenerated/converted. Id2ndR suggested the for-loop method instead.
  • Loading branch information
@pierrou-andreas
pierrou-andreas authored Aug 28, 2021
1 parent e492be3 commit 1d04d79
Showing 1 changed file with 4 additions and 1 deletion.
5 changes: 4 additions & 1 deletion src/initrd-dropbear.service
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,10 @@

# note:
# dropbear-convert needs host keys in pem format
# to regenerate host keys use: `ssh-keygen -A -m PEM`
# to regenerate host keys use:
# for format in dsa ecdsa ed25519 rsa; do
# ssh-keygen -A -p -m PEM -f /etc/ssh/ssh_host_${format}_key
# done

# service dependencies:
# - https://www.archlinux.org/packages/community/x86_64/dropbear/
Expand Down

0 comments on commit 1d04d79

Please sign in to comment.