cronekorkn/bundlewrap
1
0
Fork 0
Code Issues Pull requests 8 Projects Releases Wiki Activity

ssh host key: use custom path to not collide with auto generated keys

Browse source
This commit is contained in:
cronekorkn 2024-07-03 10:05:44 +02:00
parent c128b8a1ca
commit 8e8f77e546
Signed by: cronekorkn
SSH key fingerprint: SHA256:v0410ZKfuO1QHdgKBsdQNF64xmTxOF8osF1LIqwTcVw
2 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
bundles/ssh/files/sshd_config
View file

@ -21,3 +21,4 @@ ClientAliveInterval 30
ClientAliveCountMax 5 ClientAliveCountMax 5
AcceptEnv LANG AcceptEnv LANG
Subsystem sftp /usr/lib/openssh/sftp-server Subsystem sftp /usr/lib/openssh/sftp-server
HostKey /etc/ssh/ssh_host_managed_key

4
bundles/ssh/items.py
View file

@ -51,14 +51,14 @@ files = {
], ],
'skip': dont_touch_sshd, 'skip': dont_touch_sshd,
}, },
'/etc/ssh/ssh_host_ed25519_key': { '/etc/ssh/ssh_host_managed_key': {
'content': node.metadata.get('ssh/host_key/private') + '\n', 'content': node.metadata.get('ssh/host_key/private') + '\n',
'mode': '0600', 'mode': '0600',
'triggers': [ 'triggers': [
'svc_systemd:ssh:restart' 'svc_systemd:ssh:restart'
], ],
}, },
'/etc/ssh/ssh_host_ed25519_key.pub': { '/etc/ssh/ssh_host_managed_key.pub': {
'content': node.metadata.get('ssh/host_key/public') + '\n', 'content': node.metadata.get('ssh/host_key/public') + '\n',
'mode': '0644', 'mode': '0644',
'triggers': [ 'triggers': [