Package: freedombox-setup
Version: 0.5
Severity: normal
Tags: patch
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
When freedombox-setup is installed on a Debian machine, the exising SSH keys
of the machine are destroyed. This makes freedombox-setup unsuitable on a
machine that is already under use.
The attachted patch proposes that we delete the SSH keys from the FreedomBox
images but not remove the existing SSH keys when installing on Debian. This
patch must be accompanied by a patch to freedom-maker that ensure that the
keys are not present on a FreedomBox image.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=0cdk
-----END PGP SIGNATURE-----
>From 6065d8b0e442170c5a212b87b220457a14c8367a Mon Sep 17 00:00:00 2001
From: Sunil Mohan Adapa <su...@medhas.org>
Date: Thu, 27 Aug 2015 22:38:47 +0530
Subject: [PATCH] Don't delete SSH keys
When users install FreedomBox on a Debian system, it should not wipe out
their existing SSH server keys. This should only happen in an pre-build
image downloadable by many people so as to not have multiple servers
having the same set of keys.
This patch complements a change to freedom-maker that makes sure the SSH
server keys are not present on a built image.
---
first-run.d/10_ssh-keys | 1 -
setup.d/15_ssh-keys | 6 ------
2 files changed, 7 deletions(-)
delete mode 100755 setup.d/15_ssh-keys
diff --git a/first-run.d/10_ssh-keys b/first-run.d/10_ssh-keys
index 43e7930..83bec4c 100755
--- a/first-run.d/10_ssh-keys
+++ b/first-run.d/10_ssh-keys
@@ -3,7 +3,6 @@
. /lib/lsb/init-functions
log_action_begin_msg "Creating SSH keys"
-rm -f /etc/ssh/ssh_host_*
if dpkg-reconfigure openssh-server ; then
log_action_end_msg 0
else
diff --git a/setup.d/15_ssh-keys b/setup.d/15_ssh-keys
deleted file mode 100755
index bdcc8bb..0000000
--- a/setup.d/15_ssh-keys
+++ /dev/null
@@ -1,6 +0,0 @@
-#!/bin/sh
-
-# Make sure SSH keys are unique, and do not carry the ones generated
-# in the chroots into images.
-
-rm /etc/ssh/ssh_host_*
--
2.5.0
