[OE-core] [PATCH 9/9] Generate ssh keys at rootfs creation time in case of a read-only rootfs
Enrico Scholz
enrico.scholz at sigma-chemnitz.de
Fri Jul 26 10:39:12 UTC 2013
<Qi.Chen-CWA4WttNNZF54TAoqtyWWQ at public.gmane.org> writes:
> To avoid generating ssh keys every time a system with read-only rootfs
> starts, we generate ssh keys at rootfs creation time.
This is security wise a very bad and dangerous change because all devices
will get the same key which can be extracted very easy from (public)
images.
Enrico
More information about the Openembedded-core
mailing list