Warning: old key(s) found and disabled.
Frank Myhr
fmyhr at larkmoor.net
Sun Nov 24 22:52:41 CET 2019
Well, I goofed and entered the wrong network name while trying to set up
keys for a new network:
# tincd -n existing_net -K
Generating 2048 bits keys:
............................................+++++ p
..................................................................+++++ q
Done.
Please enter a file to save private RSA key to
[/etc/tinc/existing_net/rsa_key.priv]:
Warning: old key(s) found and disabled.
Please enter a file to save public RSA key to
[/etc/tinc/existing_net/hosts/host_on_existing_net]: ^C
I realized my error when tinc warned me, thus the ^C.
Now /etc/tinc/existing_net/rsa_key.priv has been replaced, while
/etc/tinc/existing_net/hosts/host_on_existing_net still contains the old
public key.
When tinc says it "disabled" the old key, did it it in fact *delete* it?
I haven't found it anywhere on the system. I should look at source, but
pressed for time right now. (Of course, that's when these mistakes
ALWAYS happen.)
host_on_existing_net still has access to existing_net. I assume it will
lose access when tinc is restarted unless I fix the config. It's a
problem because some remote hosts are reachable only via existing_net,
and have host_on_existing_net's now-old public key.
Thanks,
Frank
More information about the tinc
mailing list