diff options
| author | Lars Wirzenius <liw@liw.fi> | 2022-09-28 15:34:11 +0300 |
|---|---|---|
| committer | Lars Wirzenius <liw@liw.fi> | 2022-12-10 09:17:56 +0200 |
| commit | 2453e9018e59167974e7aa9db118e856e076ca9a (patch) | |
| tree | 97f96db67feb0c45b97b2edb0be71026e34699af | |
| parent | 5f046dc34a667ff0d1ec10e809c229c234d43056 (diff) | |
| download | v-i-2453e9018e59167974e7aa9db118e856e076ca9a.tar.gz | |
fix: use same name for user CA public key file as debian-ansible
Sponsored-by: author
| -rwxr-xr-x | configure-installer | 4 | ||||
| -rw-r--r-- | std.yml | 4 |
2 files changed, 4 insertions, 4 deletions
diff --git a/configure-installer b/configure-installer index e52aa19..716a941 100755 --- a/configure-installer +++ b/configure-installer @@ -123,9 +123,9 @@ def user_ca(config, mp): ca_key = cat(ca_path) include = f"{mp}/etc/ssh/sshd_config.d/userca.conf" - write(include, "TrustedUserCAKeys /etc/ssh/user_ca_keys\n", 0, 0, 0o644) + write(include, "TrustedUserCAKeys /etc/ssh/user_ca_pubs\n", 0, 0, 0o644) - cakeys = f"{mp}/etc/ssh/user_ca_keys" + cakeys = f"{mp}/etc/ssh/user_ca_pubs" write(cakeys, ca_key, 0, 0, 0o644) @@ -39,7 +39,7 @@ copy: content: | {{ user_ca_pubkey }} - dest: /etc/ssh/user_ca_keys + dest: /etc/ssh/user_ca_pubs - name: "restrict root logins over ssh to require a key" lineinfile: @@ -51,7 +51,7 @@ when: user_ca_pubkey is defined copy: content: | - TrustedUserCAKeys /etc/ssh/user_ca_keys + TrustedUserCAKeys /etc/ssh/user_ca_pubs dest: /etc/ssh/sshd_config.d/userca.conf - name: "install host key" |