| #! /bin/sh |
| # |
| # $Id: ssh-host-keygen,v 1.2 2003/11/21 12:48:57 djm Exp $ |
| # |
| # This script is normally run only *once* for a given host |
| # (in a given period of time) -- on updates/upgrades/recovery |
| # the ssh_host_key* files _should_ be retained! Otherwise false |
| # "man-in-the-middle-attack" alerts will frighten unsuspecting |
| # clients... |
| |
| keydir=@sysconfdir@ |
| keygen=@sshkeygen@ |
| |
| if [ -f $keydir/ssh_host_key -o \ |
| -f $keydir/ssh_host_key.pub ]; then |
| echo "You already have an SSH1 RSA host key in $keydir/ssh_host_key." |
| else |
| echo "Generating 1024 bit SSH1 RSA host key." |
| $keygen -b 1024 -t rsa1 -f $keydir/ssh_host_key -C '' -N '' |
| fi |
| |
| if [ -f $keydir/ssh_host_rsa_key -o \ |
| -f $keydir/ssh_host_rsa_key.pub ]; then |
| echo "You already have an SSH2 RSA host key in $keydir/ssh_host_rsa_key." |
| else |
| echo "Generating 1024 bit SSH2 RSA host key." |
| $keygen -b 1024 -t rsa -f $keydir/ssh_host_rsa_key -C '' -N '' |
| fi |
| |
| if [ -f $keydir/ssh_host_dsa_key -o \ |
| -f $keydir/ssh_host_dsa_key.pub ]; then |
| echo "You already have an SSH2 DSA host key in $keydir/ssh_host_dsa_key." |
| else |
| echo "Generating SSH2 DSA host key." |
| $keygen -t dsa -f $keydir/ssh_host_dsa_key -C '' -N '' |
| fi |