Re-use public key, private key, and authorized_keys across machines

Ananth

8/1/23, 8:45 AM

Suppose there are two machines, A and B, both with local user account alice present. Suppose also that ~/.ssh contains the same id_ed25519, id_ed25519.pub, and authorized_keys file on both machines. Will I be able to SSH from machine A to B or from B to A without passwords?

0 + 0

ssh

ssh-keys

Score:0

Server

Nikita Kipriyanov

8/1/23, 9:37 AM

To be able to SSH you need to distribute public keys by putting them into ~/.ssh/authorized_keys file (default for OpenSSH) of the corresponding user on target machines.

By using SSH agent and by enabling SSH agent forwarding you then will be able to connect from any of them to any other if you connected to the first machine by the means of the key.

Ideally each source machine (from which you are going to connect) should have its own keypair. For example, Proxmox VE does that: in cluster environment it maintains a shared authorized_keys file for roor; for each joined server it generates its own keypair, and puts a public part into that shared file. This way it achieves SSH from any server to any server.

Better don't distribute private keys!

0 + 0

Ananth

8/1/23, 10:16 AM

You're missing the point of my question. I don't want security advice on managing my private keys. I just want to know if the scenario I outlined above is possible.

Nikita Kipriyanov

8/11/23, 5:28 PM

It is *offtopic* in this site. Nobody will recommend or "approve" such kind of a solution on ServerFault since it's against normal business practices (see site description).

Ananth

8/12/23, 6:46 PM

It's incredibly short sighted to declare this an abnormal business practice. I have a legitimate "business use" for what i described. I'm asking for ideas on how to see common tools. Just because it doesn't fit in your arbitrary definition it's not wrong. What a waste of time.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Re-use public key, private key, and authorized_keys across machines

TH: ใช้รหัสสาธารณะ รหัสส่วนตัว และรหัสที่ได้รับอนุญาตซ้ำในเครื่องต่างๆ

RO: Reutilizați cheia publică, cheia privată și cheile_autorizate pe mașini

RU: Повторно используйте открытый ключ, закрытый ключ и author_keys на разных машинах.

VI: Tái sử dụng khóa chung, khóa riêng và khóa được ủy quyền trên các máy

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.