hurricos/ansible-labb-wifi
1
0
Fork 0
Code Issues 3 Pull Requests Packages Projects Releases Wiki Activity

fix: dropbear: Pull the ed25519 pubkey from $HOME, not /home/$USER

Browse Source 
Also, pin the mode so it's never world-writable.
This commit is contained in:
Martin Kennedy 2023-04-07 12:57:59 -04:00
parent cf8514dab7
commit ce468dc798
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
roles/config/tasks/main.yml
View File

@ -25,9 +25,10 @@
- name: Update authorized keys - name: Update authorized keys
lineinfile: lineinfile:
path: /etc/dropbear/authorized_keys path: /etc/dropbear/authorized_keys
line: "{{ lookup('file', '/home/' + lookup('env', 'USER') + '/.ssh/id_ed25519.pub') }}" line: "{{ lookup('file', lookup('env', 'HOME') + '/.ssh/id_ed25519.pub') }}"
state: present state: present
create: yes create: yes
mode: 644
- name: Disable Root password authentication - name: Disable Root password authentication
uci: uci: