paspo/docker-webserver-nginx
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Releases Activity
Files
85f45d81459bde7ce7507b8cbdc2902149ae0623
docker-webserver-nginx/rootfs/app/entrypoint.sh.d/90_ssh.sh
paspo 85f45d8145
All checks were successful
Container Publish / on-success-skip (push) Has been skipped
Details
Container Publish / build-image (amd64) (push) Successful in 50s
Details
Container Publish / build-image (arm64) (push) Successful in 23s
Details
Container Publish / update docker manifest (push) Successful in 14s
Details
ssh config location
2025-07-31 09:57:49 +02:00

51 lines
1.2 KiB
Bash
Executable File
Raw Blame History

#!/bin/sh
echo "# Configuring ssh"
for keytype in ecdsa rsa ed25519 ; do
if [ ! -r "${PATH_SSH_HOST}/ssh_host_${keytype}_key" ] ; then
/usr/bin/ssh-keygen -t "${keytype}" -f "${PATH_SSH_HOST}/ssh_host_${keytype}_key" -N ""
fi
chmod 0600 "${PATH_SSH_HOST}/ssh_host_${keytype}_key"
chmod 0644 "${PATH_SSH_HOST}/ssh_host_${keytype}_key.pub"
done
# set authorized_keys permissions
if [ -f "${PATH_SSH_HOST}/authorized_keys" ] ; then
chmod 0600 "${PATH_SSH_HOST}/authorized_keys"
chown "${USERNAME}:${GROUPNAME}" "${PATH_SSH_HOST}/authorized_keys"
fi
if [ -d "${PATH_WEBROOT}/.ssh" ] ; then
chmod 0700 "${PATH_WEBROOT}/.ssh"
fi
cat >/etc/ssh/sshd_config.d/sshd.conf <<EOF
HostKey ${PATH_SSH_HOST}/ssh_host_rsa_key
HostKey ${PATH_SSH_HOST}/ssh_host_ecdsa_key
HostKey ${PATH_SSH_HOST}/ssh_host_ed25519_key
#SyslogFacility AUTH
LogLevel INFO
LoginGraceTime 1m
PermitRootLogin no
PubkeyAuthentication yes
MaxAuthTries 3
PrintMotd no
AuthorizedKeysFile ${PATH_SSH_HOST}/authorized_keys
PasswordAuthentication no
AllowAgentForwarding no
AllowTcpForwarding no
GatewayPorts no
X11Forwarding no
Subsystem sftp internal-sftp
ChrootDirectory ${PATH_BASE}
ForceCommand internal-sftp -d ${PATH_WEBROOT}
EOF
Reference in New Issue View Git Blame Copy Permalink