This is a shell script you run, with a list of servers
Example:
revoke-ssh-key.sh mycomputer.company.com server.nonprofit.org othercomputer.government.biz
This tool will:
-
Assume you've already removed the key from web apps like Google Compute Engine and GitHub, and
-
Assume you have a bad old key in
~/.ssh/id_rsa_old
and~/.ssh/id_rsa_old.pub
, and -
Assume the old key is still in
ssh-agent
(you can add it if not), and -
Assume you use
ssh-agent
, and -
Assume you have generated a new key in
~/.ssh/id_rsa
and~/.ssh/id_rsa.pub
.
- It will check if the machine in question has your new key, and
- If so, it will remove the old key, and
- If it doesn't have the new key, it'll add it.
export DRY_RUN=yes
GPLv2 or later, at your option.
(C) 2015 Asheesh Laroia