|
| ▲ | Tuna-Fish 8 hours ago | parent | next [-] |
| Correct. Private keys should never be backed up. Instead, should you need a backup, you should create a distinct key for that purpose. |
| |
| ▲ | TurdF3rguson 7 hours ago | parent [-] | | That's a great plan until you're locked out of all your devices with no backup. | | |
| ▲ | derefr 5 hours ago | parent [-] | | I think the implication is that you should own multiple client devices capable of SSHing into things, each with their own SSH keypair; and every SSH host you interact with should have multiple of your devices’ keypairs registered to it. | | |
| ▲ | TurdF3rguson 3 hours ago | parent [-] | | Right, and to never backup the keys which means losing of all your devices means you can't possibly recover. |
|
|
|
|
| ▲ | leni536 8 hours ago | parent | prev [-] |
| You can have backup private keys, they don't have to be copies of some other private keys. |
