SSH configuration.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
ltdk 934919cfc7 Use internal-sftp 6 days ago
.editorconfig Initial commit 4 months ago
.gitignore Initial commit 4 months ago
CHANGELOG.md Use internal-sftp 6 days ago
LICENSE.md Initial commit 4 months ago
PKGBUILD Use internal-sftp 6 days ago
README.md Initial commit 4 months ago
ltdk-ssh.install Initial commit 4 months ago
reload_sshd.service Initial commit 4 months ago
ssh.sysusers Initial commit 4 months ago
ssh.tmpfiles Initial commit 4 months ago
ssh_config Initial commit 4 months ago
sshd.service.conf Initial commit 4 months ago
sshd_config Use internal-sftp 6 days ago
sshd_config.path Initial commit 4 months ago
sshd_listen_default Initial commit 4 months ago
sshdgenconfig Initial commit 4 months ago
sshdgenconfig.service Initial commit 4 months ago
sshdgenkeys Initial commit 4 months ago
sshdgenkeys.service.conf Initial commit 4 months ago

README.md

ssh

SSH configuration.

Disclaimer

This will overwrite your existing configuration; although it offers some customisation, it will mostly disregard what is already configured.

Changes

  1. Moves /etc/ssh/ssh_host_* to /var/key/ssh/host to ensure that secrets are stored in /var instead of /etc.
  2. Adds a tmpfiles configuration to ensure that /var/key/ssh has the right permissions.
  3. Replaces the existing /etc/ssh/ssh_config and /etc/ssh/sshd_config files with copies stored in /usr/local/etc.
  4. Adds an extra /etc/ssh/sshd_config_listen configuration files for storing per-server listen configuration.
  5. Adds custom ltdk-sshdgenkeys command for generating keys; ltdk-sshdgenkeys ensure simply ensures that keys exist, while ltdk-sshdgenkeys rotate rotates keys.
  6. Changes sshdgenkeys.service to run ltdk-sshdgenkeys ensure instead of sshd-keygen -A.

License

Available via the Anti-Capitalist Software License for individuals, non-profit organisations, and worker-owned businesses.