From 1b67953c3e1dc8a4e9a351f0a52e647159212d03 Mon Sep 17 00:00:00 2001
From: Peter Palfrader <peter@palfrader.org>
Date: Tue, 19 Jun 2012 20:02:28 +0200
Subject: [PATCH] ssh fu

---
 input/howto/install-ganeti.creole | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/input/howto/install-ganeti.creole b/input/howto/install-ganeti.creole
index f7bb1b5..a28f5b4 100644
--- a/input/howto/install-ganeti.creole
+++ b/input/howto/install-ganeti.creole
@@ -136,7 +136,12 @@ kernels):
 
 === exchange ssh keys ===
 
-ipsum loren bacon puppet: the ssh keys for nodes must be added to root:/etc/.ssh/authorized_keys (or /etc/ssh/keys/root) on all nodes; puppet can handle this (poorly; needs improvement)
+on each node:
+
+{{{
+   mkdir -m 0700 -p /root/.ssh &&
+   ln -s /etc/ssh/ssh_host_rsa_key /root/.ssh/id_rsa
+}}}
 
 === configure iptables (via ferm) ===
 
@@ -170,7 +175,13 @@ Note the following:
 
 === add slave nodes ===
 
-For each slave node (only bar for this example), on the master node (foo):
+For each slave node (only bar for this example):
+
+on the slave, append the master's /etc/ssh/ssh_host_rsa_key to
+/etc/ssh/userkeys/root.  This is only required temporarily - once
+everything works puppet will put it/keep it there.
+
+on the master node (foo):
 
 {{{
     gnt-node add \
-- 
2.20.1