I read about setting up ssh keys in linux and have some comprehension problems. Correct me if I state something wrong:

For example, host tr-lgto wants to connect to host tr-mdm using ssh. If we want to be sure that it's real tr-mdm we generate a pair of keys on tr-mdm and we add public key to file known_hosts on tr-lgto. If tr-mdm wants to check that tr-lgto is real, than tr-lgto have to generate pair of keys and public key should be added to authorized_keys file on tr-mdm.

Question 1: There is no separation between users in file known_hosts, it's just IP address and dns name. tr-mdm can have a lot of users with its own .ssh folder. Should we add all public keys to known_hosts?

Question 2: I found command ssh-keyscan -t rsa tr-mdm which return me public key of tr-mdm. It's not clear public key of which user. Moreover, public key in /root/.ssh/ is different from what command returns. How can it be?

I read about setting up ssh keys in Linux and have some questions. Correct me if I'm wrong…

Let's say host tr-lgto wants to connect to host tr-mdm using ssh. If we want to be sure that it's the real tr-mdm, we generate a pair of keys on tr-mdm and we add the public key to known_hosts on tr-lgto. If tr-mdm wants to check that it's the real tr-lgto, then tr-lgto has to generate a keypair and add the public key to authorized_keys on tr-mdm.

Question 1: There is no user field in file known_hosts, just IP addresses and hostnames. tr-mdm might have a lot of users, each with their own .ssh folder. Should we add the public key to each of the known_hosts files?

Question 2: I found that ssh-keyscan -t rsa tr-mdm will return the public key of tr-mdm. How do I know what user this key belongs to? Moreover, the public key in /root/.ssh/ is different from what that command returns. How can this be?