It's worth noting both GitHub and GitLab strip the comment off the keys. https:/... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Latty on Sept 24, 2016 \| parent \| context \| favorite \| on: Upgrade your SSH keys It's worth noting both GitHub and GitLab strip the comment off the keys. https://github.com/Lattyware.keys - GitHub leave it blank: `ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGAx5F7iJTDwbPrdhrTtVdQRtozcRDvGNuU7BB+4+mHi ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL6WfINFFvzT+Z+l5sYq9zJoyXPLL27v9vvE1+p1XOiW` https://gitlab.com/latty.keys - GitLab add a generated comment: `ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL6WfINFFvzT+Z+l5sYq9zJoyXPLL27v9vvE1+p1XOiW Gareth Latty (gitlab.com) ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGAx5F7iJTDwbPrdhrTtVdQRtozcRDvGNuU7BB+4+mHi Gareth Latty (gitlab.com)` In my case, I'd actually quite like the comments to be left in, one of those is my personal key, one is for work. Differentiating is useful depending on why I have access.

sillysaurus3 on Sept 25, 2016 | [–]

Certainly, but your user@host will be leaked to the staff of Github / Gitlab and to anyone that compromises your account. The unfortunate thing about anonymity is that a small mistake can be costly. It depends what your threat model is, though.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact