Howdy all!
I have a large setup that has 4 accounts that are part of a family but each have a different function. To make matters more complicated, we have a LARGE number of systems that
have these 4 accounts. To help manage our ssh world I have created a master
known_hosts file that lives in a common location, with ownership of account #1
I have linked /standard/location/known_hosts /home/user[1-4]/.ssh/known_hosts
I was questioned by a co-worker that this may be less then secure. I'm a bit green on my ssh skills, but I do understand that you can use ssh-keyscan to get all the same information. Instead of 4 users known_hosts * 150+ hosts, I can have one master and 4 links on each system.
The known_hosts file is not that large, but I figure saving space and keeping everything synced up is a good thing.
Pros??
Cons???
Thanks!
V.