Mailinglist Archive: opensuse-autoinstall (99 mails)
| < Previous | Next > |
Re: [opensuse-autoinstall] Post, network required script
- From: Mike Marion <mmarion@xxxxxxxxxxxx>
- Date: Fri, 4 May 2007 14:06:26 -0700
- Message-id: <20070504210626.GC16190@xxxxxxxxxxxxxxxxxxxxxx>
On Fri, May 04, 2007 at 10:15:45PM +0100, Alan Mosca wrote:
> I have a perl script that is being run as "post" with network required.
> This script is meant to download ssh host keys via nfs and replace the
> ones in /etc/ssh. Can someone confirm that this script will be run
> *after* sshd has generated it own keys and it won't be overwriting the
> ones I just copied? If not how could I solve this?
It shouldn't matter.. sshd only runs keygen if the files aren't there.
Sample from /etc/init.d/sshd:
if ! test -f /etc/ssh/ssh_host_key ; then
echo Generating /etc/ssh/ssh_host_key.
ssh-keygen -t rsa1 -b 1024 -f /etc/ssh/ssh_host_key -N ''
fi
So if you drop your keys into place before it runs, it'll see them and
not run ssh-keygen anyway.
--
Mike Marion-Unix SysAdmin/Staff IT Engineer-http://www.qualcomm.com
"I've never used their tech support, but the word is that it sucks."
I believe it's composed entirely of monkeys that couldn't get the Shakespeare
gig. :-) ==> /. users talking about @home tech support
--
To unsubscribe, e-mail: opensuse-autoinstall+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-autoinstall+help@xxxxxxxxxxxx
> I have a perl script that is being run as "post" with network required.
> This script is meant to download ssh host keys via nfs and replace the
> ones in /etc/ssh. Can someone confirm that this script will be run
> *after* sshd has generated it own keys and it won't be overwriting the
> ones I just copied? If not how could I solve this?
It shouldn't matter.. sshd only runs keygen if the files aren't there.
Sample from /etc/init.d/sshd:
if ! test -f /etc/ssh/ssh_host_key ; then
echo Generating /etc/ssh/ssh_host_key.
ssh-keygen -t rsa1 -b 1024 -f /etc/ssh/ssh_host_key -N ''
fi
So if you drop your keys into place before it runs, it'll see them and
not run ssh-keygen anyway.
--
Mike Marion-Unix SysAdmin/Staff IT Engineer-http://www.qualcomm.com
"I've never used their tech support, but the word is that it sucks."
I believe it's composed entirely of monkeys that couldn't get the Shakespeare
gig. :-) ==> /. users talking about @home tech support
--
To unsubscribe, e-mail: opensuse-autoinstall+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-autoinstall+help@xxxxxxxxxxxx
| < Previous | Next > |