This is a shell script you run, with a list of servers
Example:
revoke-ssh-key.sh mycomputer.company.com server.nonprofit.org othercomputer.government.biz
This tool will:
-
Assume you've already removed the key from web apps like Google Compute Engine and GitHub, and
-
Assume you have a bad old key in
~/.ssh/id_rsa_oldand~/.ssh/id_rsa_old.pub, and -
Assume the old key is still in
ssh-agent(you can add it if not), and -
Assume you use
ssh-agent, and -
Assume you have generated a new key in
~/.ssh/id_rsaand~/.ssh/id_rsa.pub.
- It will check if the machine in question has your new key, and
- If so, it will remove the old key, and
- If it doesn't have the new key, it'll add it.
export DRY_RUN=yes
GPLv2 or later, at your option.
(C) 2015 Asheesh Laroia