amkartashov/gf-k8s
1
0
Fork 0
mirror of https://github.com/amkartashov/gf-k8s.git synced 2026-01-11 09:59:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

SSHct: allowed to save user password in /home/.$CTUSER.shadow

Browse source 
File should be owned by root.root and mode should be 640

Otherwise entrypoint.sh will fall back to $CTUSERPWD
This commit is contained in:
Andrey Kartashov 2018-01-23 00:21:06 +07:00
parent 18a63fccd9
commit 937f057686
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
SSHct/entrypoint.sh
View file

@ -11,7 +11,12 @@ update-locale LANG=$CTLOCALE
echo "AllowUsers $CTUSER" >> /etc/ssh/sshd_config
useradd --uid $CTUSERID --user-group --shell /bin/bash $CTUSER
if [ -f /home/.$CTUSER.shadow -a \
"$(stat --dereference --printf='%u %g %a' /home/.$CTUSER.shadow)" == "0 0 640" ]; then
echo $CTUSER:"$(cat /home/.$CTUSER.shadow)" | chpasswd -e
else
echo $CTUSER:"$CTUSERPWD" | chpasswd
fi
passwd -u $CTUSER
usermod -a -G sudo $CTUSER