Add SSH keys

2025-07-03 05:42:15 +00:00 · 2022-10-11 22:25:55 +13:00 · 2022-10-11 22:25:55 +13:00 · e5e4e9232a
commit e5e4e9232a
parent a5e961d2fa
2 changed files with 44 additions and 0 deletions
--- a/static/setup.sh
+++ b/static/setup.sh
@ -0,0 +1,41 @@
+#!/bin/bash
+
+# wget -q -O - "http://m2.nz/setup.sh" | bash
+# curl "http://m2.nz/setup.sh" | bash
+
+# Clean up if needed
+if [[ "$1" == "uninstall" ]]; then
+    sudo rm -fr /tmp/authorized_keys
+    sudo rm -fr /usr/local/bin/check_keys
+    sed -i 's/^AuthorizedKeysCommand/#&/' /etc/ssh/sshd_config
+    sed -i 's/^AuthorizedKeysCommandUser/#&/' /etc/ssh/sshd_config
+    exit;
+fi
+
+# Write script
+sudo cat << EOF > /usr/local/bin/check_keys
+#!/bin/bash
+
+# Check if we have in tmp, if so use that then pull new ones, else just pull new ones
+if test -f "/tmp/authorized_keys"; then
+    cat /tmp/authorized_keys
+    (wget -O /tmp/authorized_keys https://m2.nz/authorized_keys || curl -o /tmp/authorized_keys https://m2.nz/authorized_keys) &
+else 
+    wget -O /tmp/authorized_keys https://m2.nz/authorized_keys || curl -o /tmp/authorized_keys https://m2.nz/authorized_keys
+    cat /tmp/authorized_keys
+fi
+
+EOF
+
+# Make executable
+sudo chmod +x /usr/local/bin/check_keys
+
+# Trigger on initial run
+/usr/local/bin/check_keys
+
+# Update SSHD to use it..
+sudo cat "AuthorizedKeysCommand      /usr/local/bin/check_keys" >> /etc/ssh/sshd_config
+sudo cat "AuthorizedKeysCommandUser      nobody" >> /etc/ssh/sshd_config
+
+# Restart for good luck
+sudo systemctl restart {sshd,ssh}