Commit Graph

23 Commits

Author SHA1 Message Date
christos
bd08953ecc Add new keytype, replace duplicated code with loop 2014-10-19 16:33:01 +00:00
christos
df473aee24 PR/47540: Felix Deichmann: DSA keys can only be 1024 bits. 2013-02-07 19:32:19 +00:00
christos
3c5f87c86e generate ecdsa key 2011-07-25 03:04:23 +00:00
mycroft
7d2e1537c5 Add an _rc_subr_loaded variable, set to ":" by rc.subr. Scripts can use this
for a speedup by doing:
$_rc_subr_loaded . /etc/rc.subr
2004-08-13 18:08:03 +00:00
jonb
c384cda06a Add ssh_keygen_flags variable to rc.conf to allow users to set the
size of auto-generated keys if desired.
2004-02-18 17:36:34 +00:00
lukem
244b762de1 Complete the conversion back to the OpenSSH default configuration files of
"/etc/ssh/ssh_config" (from "/etc/ssh/ssh.conf") for ssh(1) and other
userland tools, and "/etc/ssh/sshd_config (from "/etc/ssh/sshd.conf")
for sshd(8).

etc/postinstall will detect this, and if "fix" is given, rename the files.
2002-04-29 08:23:34 +00:00
lukem
b3cffe8cbf deprecate $sshd_conf_dir and hardcode /etc/ssh.
$sshd_conf_dir wasn't as flexible as liked (it didn't work for ssh(1),
host keys or known_hosts).
2002-04-29 05:55:05 +00:00
enami
c52dde84e4 Don't assume that $0 is this script. 2002-04-19 23:13:44 +00:00
enami
8a4552987f Wrap long lines. 2002-04-19 23:12:26 +00:00
lukem
e512d5dcf7 Set command_args to '-f ${sshd_conf_dir}/${name}.conf'.
This occurs before the first load_rc_config() so that it may be
overridden by the user, and appears in single quotes so the
variables don't get evaluated until the eval in run_rc_command().
Problem noted by Patrick Welche <prlw1@cam.ac.uk> in [bin/15912].
2002-03-27 09:15:54 +00:00
lukem
7d6824228d Support alternate config dir for sshd conf file and keys (defaults to "/etc").
Based on [misc/12473] from Jim Bernard.
2002-02-24 12:50:08 +00:00
lukem
e595ebd705 be consistent with other scripts when temporarily setting umask to 022 2001-04-25 23:27:37 +00:00
lukem
18a7a9feca set the umask to 022 (remembering the previous setting) for ssh_keygen() 2001-04-25 23:18:50 +00:00
itojun
dcdec20e94 check existence of /etc/ssh_host_rsa_key too 2001-03-26 22:32:39 +00:00
itojun
27c0127814 auto-generate SSH protocol version 2 RSA key.
use newer command line syntax for ssh-keygen (-t <type>, instead of -d)
2001-03-26 22:21:26 +00:00
lukem
bd11504cb2 - only perform the checkyesno on the variable named in $rcvar (rather than
implicitly using $name if $rcvar isn't set), and always perform this check,
  even when using start_cmd (et al).
  this check is performed before the pidcmd
  is run, speeding up scripts that weren't going to be run anyway.
  this should speed up booting slow systems.

- take advantage of the above and remove
	start_precmd="checkyesno foo"
  in scripts that use start_cmd.

- explicitly set rcvar=foo in the rc.d/foo scripts which have an equivalent
  rc.conf entry

- fix `rcvar' and `restart' when $rcvar isn't set.
  these above changes fix PR [bin/11027].

- when doing `force*', ignore the return value of *_precmd.
  this fixes PR [bin/10781].

- rename what sysdb provides from `databases' to `sysdb', to reflect
  the name of the script.

- improve the comments in rc.subr
2000-09-19 13:04:38 +00:00
lukem
5007ab036b - sshd has a pid file, so take advantage of it
- support `reload' arg (using default of SIGHUP)
2000-08-10 22:49:43 +00:00
lukem
0b1677de5f - provide sshd not ssh
- don't start until after LOGIN (after NETWORK is way too early)
- KNF (as such :)
2000-08-10 01:41:09 +00:00
jwise
d6662ec62f Change name of precmd from start_precmd to sshd_precmd. While it worked
fine as was, the result was the line `start_precmd=start_precmd' which
looked odd.  Pointed out by Bernd Ernesti.

While here, add NetBSD RCS Id.

BTW, to clarify, as people have asked:  this script does not support
pkgsrc/security/sshd -- that package comes with a perfectly fine rc script
which in addition to supporting /etc/rc.d can also be used with 1.4.X.

This script will not trivially work with the ssh package as it a.) calls
the ssh commands at the pathnames they will be installed at by usr.bin/ssh,
and b.) generates a DSA key as well as an RSA key.
2000-08-01 14:28:32 +00:00
jlam
f3983ea4df Correct apparent past-o: RSA -> DSA 2000-07-31 21:43:52 +00:00
jwise
5cfec6f11d An sshd startup script for use with usr.bin/sshd. Installation is conditional
on ${SSHDIST}, as with usr.bin/ssh itself.

This script includes a `keygen' target for regenerating RSA and DSA host keys,
and invokes this if these keys are not present when sshd is started up.
2000-07-31 20:39:41 +00:00
lukem
0059d641e5 * replace daemon, login, servers with DAEMON, LOGIN, SERVERS
* remove sshd (it was from my private system)
2000-03-13 04:03:52 +00:00
lukem
c53094a738 rc.d scripts derived from /etc/rc 2000-03-10 11:53:23 +00:00