Comment by Tuna-Fish
6 hours ago
Correct. Private keys should never be backed up. Instead, should you need a backup, you should create a distinct key for that purpose.
6 hours ago
Correct. Private keys should never be backed up. Instead, should you need a backup, you should create a distinct key for that purpose.
That's a great plan until you're locked out of all your devices with no backup.
I think the implication is that you should own multiple client devices capable of SSHing into things, each with their own SSH keypair; and every SSH host you interact with should have multiple of your devices’ keypairs registered to it.
Right, and to never backup the keys which means losing of all your devices means you can't possibly recover.