Public/private key

private-key public-key

I just watch this video https://youtu.be/ZhMw53Ud2tY and the question I have is if I have to generate a public/private key pair for each server I’m looking to login to or if I just generate one pair and use that for each server. Somehow that last option seems to be like using the same password for each account.

Is it wise to store the keys in a password manager btw? I’m using keepass as password manager.


If you:

  • Keep your private key only on your workstation(s) (good ol' common sense)
  • Put a good passphrase on your private key (protects you from a hacker stealing your private key)
  • Use and configure agent forwarding properly (reduces the need to keep your private key on other devices)

you should not need a keypair per server.

Think about it - should your workstation be compromised, the hacker is going to take all your keys - whether it's 1 pair or 20 pairs for 20 servers you log into.

Related

Joomla at nginx - remove slashes doesn't work properly
CustomScriptExtension failed with "Operation is not valid due to the current state of the object"
Prove: $f(x)^{p^k}\equiv f\left(x^{p^k}\right)\bmod p$
Eliminating $\theta$ from the system $x\sin\theta-y\cos\theta=-\sin4\theta$, $x\cos\theta+y\sin\theta=\frac52-\frac32\cos4\theta$
Check if a number is Carmichael
Sum of two eigenvectors for different eigenvalues
Divisibility Rule for 9
Prove the sequence converge and find its limit
When does a Mordell curve have non-trivial torsion?
weak convergence of independent sequence
Prove by mathematical induction that $2^{3^n}+1$ is divisible by $3^{n+1}$
modular arithmetic, solving $ax + b \equiv c \pmod d$?