[Bug 876910] Re: When starting open ssh server without host keys in /etc/ssh/, the keys are not automatically generated.
Jon
876910 at bugs.launchpad.net
Tue Oct 18 19:10:18 UTC 2011
Hello Clint,
>> No, upstart jobs are designed to be short and pointed ways to define how
>> a daemon starts and stops. /etc/init.d is only for backward compatibility
>> in an upstart system. The ssh init.d script was left the way it is because
>> of chroot jails for sshd, but it is not necessary for normal operation.
OOOHHHH! *Light Bulb*! this makes sense. Thanks for setting me
straight.
>> Yeah, thats probably better. What was I thinking? ;)
Sometimes it's more fun to do things the hard way. :)
>> Not sure why this isn't scalable... its not that heavy of a command and
>> it should be idempotent.
I can't automate it. If I Can't automate it, can't scale it well.
The problem is, for every new VM, to enable SSH this requires the SysOp to:
-- Log into the Host Machine,
-- Determine the VNC port
-- VNC to the the VM,
-- Run the command.
With enough volume, these four steps could make for a full time job.
It's not the command itself, but the work surrounding the command.
>> I do think its a bit odd that they are generated at install time rather than whenever they are missing,
I'm glad, I thought I was having a derp moment. Also, checking for these files at startup adds fault tolerance, would you agree?
>> but either way, its a well defined
>> behavior and so can be worked with fairly easily by removing and
>> regenerating the keys at first boot. An upstart job like this
>> would probably work:
>> start on starting ssh
>> task
>> exec [ -f /etc/ssh/ssh_host_dsa_key ] || ssh-keygen -t dsa -b 4096 -f /etc/ssh/ssh_host_dsa_key -q
Is this supposed to be all on one line? Causes ssh to hang when calling:
start ssh
Also, is there a variable that tells Ubuntu if it is first boot? This
could potentially solve the problem since the .qcow2 will overwrite this
variable.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openssh in Ubuntu.
https://bugs.launchpad.net/bugs/876910
Title:
When starting open ssh server without host keys in /etc/ssh/, the keys
are not automatically generated.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/876910/+subscriptions
More information about the Ubuntu-server-bugs
mailing list