Compare commits
11 Commits
a153a40cf1
...
main
| Author | SHA1 | Date | |
|---|---|---|---|
| b098163830 | |||
| d70e3970ba | |||
| 7de10677d3 | |||
| 16d07c1f8e | |||
| 66cb6ae4f4 | |||
| 44a566dadc | |||
| 38bc39eb05 | |||
| 6f0992de49 | |||
| de5a8240a8 | |||
| 8162a423f6 | |||
| 00c6b48890 |
@@ -11,10 +11,14 @@ fi
|
||||
##Generate keys
|
||||
mkdir /.SSH/automated/.temp
|
||||
ssh-keygen -f /.SSH/automated/.temp/id_ed25519 -N "" &&
|
||||
if [ -f /.SSH/automated/priv/servers/id_ed25519 ]; then
|
||||
rm /.SSH/automated/priv/servers/id_ed25519
|
||||
fi
|
||||
if [ -f /.SSH/automated/pub/servers/id_ed25519.pub ]; then
|
||||
rm /.SSH/automated/pub/servers/id_ed25519.pub
|
||||
/.SSH/automated/.temp/id_ed25519 > /.SSH/automated/priv/servers/
|
||||
/.SSH/automated/.temp/id_ed25519.pub > /.SSH/automated/pub/servers/
|
||||
fi
|
||||
cat /.SSH/automated/.temp/id_ed25519 > /.SSH/automated/priv/servers/id_ed25519
|
||||
cat /.SSH/automated/.temp/id_ed25519.pub > /.SSH/automated/pub/servers/id_ed25519.pub
|
||||
sha256sum /.SSH/automated/.temp/id_ed25519 | awk '{print $1}' > /home/$USER/sshprov/priv
|
||||
sha256sum /.SSH/automated/.temp/id_ed25519.pub | awk '{print $1}' > /home/$USER/sshprov/pub
|
||||
sleep 2
|
||||
@@ -25,14 +29,14 @@ rm /home/$USER/.ssh/known_hosts
|
||||
rm /root/.ssh/known_hosts
|
||||
rm /root/.ssh/id_ed25519
|
||||
rm /root/.ssh/authorized_keys
|
||||
/.SSH/automated/priv/servers/id_ed25519 > /root/.ssh/id_ed25519
|
||||
/.SSH/automated/pub/servers/id_ed25519.pub > /root/.ssh/authorized_keys &&
|
||||
cat /.SSH/automated/priv/servers/id_ed25519 > /root/.ssh/id_ed25519
|
||||
cat /.SSH/automated/pub/servers/id_ed25519.pub > /root/.ssh/authorized_keys &&
|
||||
chmod 700 /root/.ssh/id_ed25519
|
||||
chmod 644 /root/.ssh/authorized_keys
|
||||
rm /home/$USER/.ssh/id_ed25519
|
||||
rm /home/$USER/.ssh/authorized_keys
|
||||
/.SSH/automated/priv/servers/id_ed25519 > /home/$USER/.ssh/id_ed25519
|
||||
/.SSH/automated/pub/servers/id_ed25519.pub > /home/$USER/.ssh/authorized_keys &&
|
||||
cat /.SSH/automated/priv/servers/id_ed25519 > /home/$USER/.ssh/id_ed25519
|
||||
cat /.SSH/automated/pub/servers/id_ed25519.pub > /home/$USER/.ssh/authorized_keys &&
|
||||
chmod 700 /home/$USER/.ssh
|
||||
chmod 600 /home/$USER/.ssh/id_ed25519
|
||||
chmod 600 /home/$USER/.ssh/authorized_keys
|
||||
|
||||
62
renewkeys.sh
62
renewkeys.sh
@@ -14,6 +14,17 @@ exit 1
|
||||
fi
|
||||
}
|
||||
|
||||
cleanup() {
|
||||
echo -e "${CR}Attention: Script in fix mode - This will reset the .ssh folder. Press CTRL+C ${FB}NOW${NF} ${CR}if you want to avoid this.${NF}"
|
||||
sleep 5
|
||||
if [[ $1 = "--pve01" ]]; then
|
||||
find /root/.ssh/ -type f -delete
|
||||
else
|
||||
find /root/.ssh/ -type f -delete
|
||||
find /home/$USER/.ssh/ -type f -delete
|
||||
fi
|
||||
}
|
||||
|
||||
verifycdn(){
|
||||
CDN="https://cdn.franscorack.com"
|
||||
echo -e "${CY}Verifying CDN availability...${NF}"
|
||||
@@ -185,25 +196,38 @@ fi
|
||||
if [ -f /root/.ssh/known_hosts ]; then
|
||||
rm /root/.ssh/known_hosts
|
||||
fi
|
||||
if [ ! -f ".SSH/.temp" ]; then
|
||||
mkdir /.SSH/.temp
|
||||
if [[ $1 = "--fix" ]]; then
|
||||
if [ "$PC" = "pve01" ]
|
||||
then
|
||||
cleanup --pve01
|
||||
verifycdn
|
||||
guardband
|
||||
rootcheck
|
||||
guardband
|
||||
else
|
||||
cleanup
|
||||
verifycdn
|
||||
guardband
|
||||
rootcheck
|
||||
guardband
|
||||
admincheck
|
||||
guardband
|
||||
fi
|
||||
else
|
||||
if [ "$PC" = "pve01" ]
|
||||
then
|
||||
verifycdn
|
||||
guardband
|
||||
rootcheck
|
||||
guardband
|
||||
else
|
||||
verifycdn
|
||||
guardband
|
||||
rootcheck
|
||||
guardband
|
||||
admincheck
|
||||
guardband
|
||||
fi
|
||||
fi
|
||||
if [ "$PC" = "pve01" ]
|
||||
then
|
||||
verifycdn
|
||||
guardband
|
||||
rootcheck
|
||||
guardband
|
||||
else
|
||||
verifycdn
|
||||
guardband
|
||||
rootcheck
|
||||
guardband
|
||||
admincheck
|
||||
guardband
|
||||
fi
|
||||
sleep 3
|
||||
echo -e "${CY}Cleaning up temp directory for checksums...${NF}"
|
||||
rm -rf /.SSH/.temp
|
||||
sleep 2
|
||||
echo -e "${CG}Script execution completed.${NF}"
|
||||
|
||||
@@ -14,9 +14,6 @@ fi
|
||||
|
||||
guardband() {
|
||||
if [ $? -ne 0 ]; then
|
||||
echo -e "${CY}Cleaning up temp directory...${NF}"
|
||||
rm -rf /.SSH/automated/.temp/
|
||||
sleep 2
|
||||
echo -e "${CR}Script Exited with an Error.${NF}"
|
||||
exit 1
|
||||
fi
|
||||
@@ -33,4 +30,20 @@ if ! wget --spider "$SRV" 2>/dev/null; then
|
||||
echo -e "${CG}Server available - ${FB}Proceeding...${NF}"
|
||||
sleep 2
|
||||
fi
|
||||
}
|
||||
}
|
||||
|
||||
updatescripts(){
|
||||
if [ ! -d /.SSH/script ]; then
|
||||
mkdir /.SSH/script
|
||||
fi
|
||||
find /.SSH/script -name "*.sh" -delete
|
||||
wget -q https://git.franscorack.com/Franscobec/AutoremakeSSH/raw/branch/main/renewkeys.sh -O /.SSH/script/renewkeys.sh
|
||||
wget -q https://git.franscorack.com/Franscobec/AutoremakeSSH/raw/branch/main/deploy-newssh.sh -O /.SSH/script/deploy-newssh.sh
|
||||
wget -q https://git.franscorack.com/Franscobec/AutoremakeSSH/raw/branch/main/autoremakekeys.sh -O /.SSH/script/autoremakekeys.sh
|
||||
wget -q https://git.franscorack.com/Franscobec/AutoremakeSSH/raw/branch/main/updatescripts.sh -O /.SSH/script/updatescripts.sh
|
||||
}
|
||||
|
||||
verifygit
|
||||
guardband
|
||||
updatescripts
|
||||
guardband
|
||||
Reference in New Issue
Block a user