** Keith Edmunds <kae@???> [2008-05-15 21:41]:
> On Thu, 15 May 2008 20:41:19 +0100, paul@??? said:
> > As a quick aside on that, I
> > rather liked the Ubuntu upgrade process compared to that used by Debian.
> > It's only a very minor difference, but having the upgrade regenerate the
> > server keys for you was a nice touch.
>
> Are you sure about that, Paul? All the Debian servers I've upgraded had
> their keys regenerated as part of the upgrade.
** end quote [Keith Edmunds]
Pretty sure yes. The openssh-client and openssh-server packages upgraded
and the openssh-blacklist package was added in exactly the same manner
as the Ubuntu box. There was no prompt or reference to regerating keys
as there was with the Ubuntu box however, and when I ssh'd in there was
no complaint about the keys having changed. When I checked the
/etc/ssh/ssh_host_* files they were all still on the old dates. When I
manually recreated the keys and then ssh'd in I did get a prompt
indicating they had changed. This happened on more than one box, so I
assumed it to be a variation between the Ubuntu and Debian packages.
--
Paul Tansom | Aptanet Ltd. |
http://www.aptanet.com/ | 023 9238 0001
======================================================================
Registered in England | Company No: 4905028 | Registered Office:
Crawford House, Hambledon Road, Denmead, Waterlooville, Hants, PO7 6NU
