Compare commits

...

2 Commits

Author SHA1 Message Date
2f3be6009c
Add authorized_keys, disable password login, restart sshd
All checks were successful
buildbot/multibuild_parent Build done.
buildbot/travis_bionic Build done.
buildbot/job/openwrt Build done.
2023-02-08 16:24:26 +02:00
96985a61db
Replace dropbear by openssh-server using imagebuilder 2023-02-02 18:32:32 +02:00
2 changed files with 19 additions and 1 deletions

View File

@ -47,6 +47,15 @@ make info
# Double the size of the root partition
echo "CONFIG_TARGET_ROOTFS_PARTSIZE=208" >> .config
# Setup files
mkdir -p files/root/.ssh
cp ${pwd}/authorized_keys files/root/.ssh/
mkdir -p files/etc/uci-defaults
cat << "EOF" > files/etc/uci-defaults/99-custom
echo "PasswordAuthentication no" >> /etc/ssh/sshd_config
/sbin/service sshd restart
EOF
PACKAGES="kmod-nf-nathelper-extra kmod-rtc-ds1307 \
kmod-usb-audio kmod-usb-net-rtl8152 \
alsa-lib pciutils usbutils \
@ -81,9 +90,11 @@ PACKAGES="kmod-nf-nathelper-extra kmod-rtc-ds1307 \
luci-ssl-nginx luci-app-acme \
python3-packages python3-yaml \
wireguard-tools wget-ssl \
openssh-server \
"
make image PROFILE=rpi-4 PACKAGES="${PACKAGES}"
make image PROFILE=rpi-4 \
PACKAGES="${PACKAGES}" DISABLED_SERVICES="dropbear" FILES="files"
make manifest PROFILE=rpi-4 PACKAGES="${PACKAGES}"

7
authorized_keys Normal file
View File

@ -0,0 +1,7 @@
ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBI8QxHD/hCeA/8VY0qkQEh5LNedXMDR7o+qJ0KlsstqebtN/Egwto37arI0x/GRDD0QRSzpgm2AVsTeDGOV1AAw= ssh_token@mireille
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC7Pebz7cNpL/Hikzfwzdnujcd1BWw4D4e1OXQaoCGcq2/gL+Wym8InL5qZ5hOgaF8lRVX5ys7m75uOyg8LOIRu0A27TzWzf9brV8TF5rsIhHYSK0CAA81G5NqOQgP3b7SANcs3PEWtxz+OeqFo7dcsQZijczRNunM73CBsTFZQCmNE2ZBh2QaQ1d/1lmYTqGlJ8DJrqeXXVc3S1Jln2nZ49XQMqdG49KvU66Xhd8kaukucDBl8iNLWpQ+N9Ao1SOnNlJVpLi6XUy9Hx3X3wVbrLQaHslIG6+AeZGpO/l3gKrQM3fjM2H+w9ow1rWcMdHgjxWZUryE7K1vzbpm4vNIf shurdeek@brusli
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDVrfim4EMF7FzAnQF51frpsPgNJxfkzvBEC80wgwwP0AzD2iFPS57a6sXbie+sX7ALX89gmRwFtrKOwGYRYoQfU6dAhPirbpKY4BcTQx8N31fazceVJL0Y1kqSngNjYMbo1q0L5dgLBtPoVGcnriFAVGLg1+p9FIJTDK4rbwnYyDJyjruSAfnqVaWmqlMNAZNhqxOikBOh5M+3qPj0wmSKOE1roE4HmQKUl62UjDWTkLLNx5u75QywQz+r8S0QNkSu/0iaeUdgkv3p0SsU4X5dmwuZdbySMWkqy0zUCky2+qDqxzN6wHgnePZcedSobsIpxwDK0IrHpbaaBzVNn1uh shurdeek@nitrokey1
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC1ADz4g7BkLoq9CEffl7jxp4MsBrtv12rYpskUMV2HKH48Uwue/yjqvwxaRk4Nd0TG2fQisqsB3GYLRe+6R00zbn2kA5k49gQEt6EnVVlsTWSp6iutCi8CEOSxFew/r//NOJbKQPWN2yCh8TQowks+lM/zwlFhzfoqDjgMCU13IW/O9RphnMACnx1o/EvUeoozcCMbAzJOq4I/YOSJwavuTUUClnD4tyPs1HyYVcw+4Bti1QERkE+tbbgXUAy7WvxXpEflfenHHIAnjqUCW3LUJ6wTroq55FQ1RT7WE+XddL5OI+o4vbQVG8cbYXwCk6/m+P051v9PfnyecI6qj8wd shurdeek@yubikey1
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCoNYZ1L/rR44/sUb6fzTXb99CrP+B9j01DRin5RT8Y59oD9R9TvsQcLztpXzvl4JQJfvjGou3ywVAuXTf8ksf/VHWnfGtZ3X1nWvuAeERwTFIIl8gR9xwTVjXDsLp3Feiqw6wHKdMI3BqI3oJ/Wn6gBxWgnm5UZbZMdWlAEAH1ucdxTOZ/+3aTC/hGb0N6ujp7MExTSUAs5xeSKHpocTdkD2RajC2Y+mbug0yt92XCHZX39zsQcxFd4NokTa2iJNO0bAYWXlXDPWRLuUfOrWWfuLn+OPH71pj+ysb6jrwFk+1sGV9h1GuxZne1+i42CGKoKomJaCMLE7kvMF6Solu/ shurdeek@whisper
ssh-rsa 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 yubikey@lenovopadpro
ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCJfhSCRSrz1rSFtSWNt6EzL08l1DOjcEKBREUwtKZgxDJcj2MdXH6Z7otnJUUmOqf43x35eayCpQz8EG8eKJio= johndoe@macbook.pro@secretive.MacBook-Pro.local