@mWare @lienrag every server I manage for 10+ years gets this in sshd_config:
AuthorizedKeysFile /etc/ssh-keys/%u
the files in /etc/ssh-keys are not writable by the users. give me the keys, they get put in there manually or by automation (ansible, chef, whatever)
edit: it wouldn't be awful to let users edit those files with sudo, but that opens a whole new can of worms
AuthorizedKeysFile /etc/ssh-keys/%u
the files in /etc/ssh-keys are not writable by the users. give me the keys, they get put in there manually or by automation (ansible, chef, whatever)
edit: it wouldn't be awful to let users edit those files with sudo, but that opens a whole new can of worms
