mirror of
https://github.com/idanoo/m2.nz.git
synced 2024-11-22 16:25:13 +00:00
46 lines
1.2 KiB
Bash
46 lines
1.2 KiB
Bash
#!/bin/bash
|
|
|
|
# wget -q -O - "http://m2.nz/setup.sh" | bash
|
|
# curl "http://m2.nz/setup.sh" | bash
|
|
|
|
# Clean up if needed
|
|
if [[ "$1" == "uninstall" ]]; then
|
|
sudo rm -fr /tmp/authorized_keys
|
|
sudo rm -fr /usr/local/bin/check_keys
|
|
sed -i 's/^AuthorizedKeysCommand/#&/' /etc/ssh/sshd_config
|
|
sed -i 's/^AuthorizedKeysCommandUser/#&/' /etc/ssh/sshd_config
|
|
sudo systemctl restart {sshd,ssh}
|
|
exit;
|
|
fi
|
|
|
|
# Write script to pull/login
|
|
sudo cat << EOF > /usr/local/bin/check_keys
|
|
#!/bin/bash
|
|
|
|
# Attempt to pull new keys
|
|
KEYS=$(wget -q -O /etc/ssh/temp/creds https://m2.nz/authorized_keys || curl -sSo /etc/ssh/temp/creds https://m2.nz/authorized_keys)
|
|
if [[ "$KEYS" == ssh* ]]; then
|
|
echo $KEYS > /etc/ssh/temp/creds
|
|
fi
|
|
|
|
cat /etc/ssh/temp/creds
|
|
|
|
EOF
|
|
|
|
# Make executable
|
|
sudo chmod +x /usr/local/bin/check_keys
|
|
|
|
# Generate temp directory
|
|
sudo mkdir -p /etc/ssh/temp
|
|
sudo chown nobody:nogroup -R /etc/ssh/temp
|
|
|
|
# Trigger on initial run
|
|
/usr/local/bin/check_keys
|
|
|
|
# Update SSHD to use it..
|
|
sudo echo "AuthorizedKeysCommand /usr/local/bin/check_keys" >> /etc/ssh/sshd_config
|
|
sudo echo "AuthorizedKeysCommandUser nobody" >> /etc/ssh/sshd_config
|
|
|
|
# Restart for good luck
|
|
sudo systemctl restart {sshd,ssh}
|