Copying SSH IDs between servers

ssh ssh-tunnel

Is it good practice to copy SSH IDs a la ssh-copy-id between remote servers in production, so that they can perform various SSH tasks with one another easier?

Yes, absolutely. Keep separate keys for each system, assigned to accounts with the least-needed privileges on each server. If possible use the command= directive in the authorized_keys file to restrict each key to a specific command, instead of having access to a full shell.

Another good practice you should do ASAP is to disable password authentication.

Related

What's the difference between EIP and public IP in AWS?
Is there any way to restrict user from changing file extensions in Windows XP, Vista, Windows 7?
Is it valid to have several IP addresses resolving back (PTR) to one name that doesn't match either of the relevant A records?
log format ignored for frontend 'http-in' since it has no log address
Setting timezone to UTC in unattended install
What does having * * * mean in the command traceroute ? and How can you cope with that situation?
Windows PowerShell - How to view commands history date/time
Receiving DMARC reports for emails I do not send
On windows 10, how do I setup a VPN client so that all users can use it (i.e. available before login)
How to resolve "The server you are trying to access is using an authentication protocol not supported by this version of Office"?
Error promoting 2012 R2 server to domain controller on 2003 domain
DNS security & .com AD Domains, What are the dangers to my AD Domain if someone squats my public .com domain