From 96ba3e010ec77a2d96ab314aa3f95fabf2afa46b Mon Sep 17 00:00:00 2001 From: Leigh Wedding Date: Fri, 16 Dec 2011 08:47:57 -0600 Subject: network/openssh-krb5: Added (Kerberos-enabled OpenSSH) Signed-off-by: Robby Workman --- network/openssh-krb5/rc.sshd.krb5 | 53 +++++++++++++++++++++++++++++++++++++++ 1 file changed, 53 insertions(+) create mode 100644 network/openssh-krb5/rc.sshd.krb5 (limited to 'network/openssh-krb5/rc.sshd.krb5') diff --git a/network/openssh-krb5/rc.sshd.krb5 b/network/openssh-krb5/rc.sshd.krb5 new file mode 100644 index 0000000000..4f795d1150 --- /dev/null +++ b/network/openssh-krb5/rc.sshd.krb5 @@ -0,0 +1,53 @@ +#!/bin/sh +# Start/stop/restart the secure shell server: + +sshd_start() { + # Create host keys if needed. + if [ ! -r /etc/ssh/ssh_host_key ]; then + /usr/bin/ssh-keygen -t rsa1 -f /etc/ssh/ssh_host_key -N '' + fi + if [ ! -f /etc/ssh/ssh_host_dsa_key ]; then + /usr/bin/ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N '' + fi + if [ ! -f /etc/ssh/ssh_host_rsa_key ]; then + /usr/bin/ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N '' + fi + /usr/kerberos/sbin/sshd +} + +sshd_stop() { + killall sshd +} + +sshd_restart() { + if [ -r /var/run/sshd.pid ]; then + echo "WARNING: killing listener process only. To kill every sshd process, you must" + echo " use 'rc.sshd stop'. 'rc.sshd restart' kills only the parent sshd to" + echo " allow an admin logged in through sshd to use 'rc.sshd restart' without" + echo " being cut off. If sshd has been upgraded, new connections will now" + echo " use the new version, which should be a safe enough approach." + kill `cat /var/run/sshd.pid` + else + echo "WARNING: There does not appear to be a parent instance of sshd running." + echo " If you really want to kill all running instances of sshd (including" + echo " any sessions currently in use), run '/etc/rc.d/rc.sshd stop' instead." + exit 1 + fi + sleep 1 + sshd_start +} + +case "$1" in +'start') + sshd_start + ;; +'stop') + sshd_stop + ;; +'restart') + sshd_restart + ;; +*) + echo "usage $0 start|stop|restart" +esac + -- cgit v1.2.3