summaryrefslogtreecommitdiff
path: root/archsshd
blob: ae621f75d1aabe73aef161912738d31483770f5c (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
#!/bin/sh

# archsshd
# Craig Jennings <c@cjennings.net>
# Sets up keys and sshd daemon on arch live cd

check_root_or_exit () {
    if [ "$EUID" -ne 0 ]
    then echo "Please run as root"
         exit
    fi
}

retrieve_keys() {
    # retrieve keys from repo and decrypt
    echo "retrieving keys for decryption..."
    {
        mkdir -p "$HOME/.ssh/"
        # retrieve keys from dotfiles repo and decrypt the keys
        (git clone --depth 1 https://git.cjennings.net/dotfiles.git \
             "$HOME/dotfiles/") >> /dev/null
        cp "$HOME/dotfiles/system/.ssh/*" "$HOME/.ssh/"
        rm -rf "$HOME/dotfiles/"
    } > /dev/null
    cd "$HOME/.ssh/"
    gpg --decrypt "$HOME/ssh.tar.gz.gpg" | tar -zxf -

    # set proper permissions on .ssh directory
    cd "$HOME" && chmod 600 $HOME/.ssh/* && chmod 700 $HOME/.ssh \
        && chmod 644 $HOME/.ssh/*.pub
}

setup_ssh () {
    # setup ssh
    echo "setting up ssh daemon..."
    systemctl start sshd
    echo "root:welcome" | chpasswd
    hostname=$(</etc/hostname)
    ipaddress=$(ip addr show wlan0 | grep 'inet ' | awk '{print $2}' | cut -d/ -f1)

    # notify user
    echo ""; echo ""
    echo "you may ssh root@$hostname or ssh root@$ipaddress using the password 'welcome'"
}



### SCRIPT ###

check_root_or_exit
retrieve_keys
setup_ssh