From cd814408d1b2a05a942713b7d5d33854b1e3c165 Mon Sep 17 00:00:00 2001 From: Austen Adler Date: Mon, 18 Jul 2016 15:54:54 -0400 Subject: [PATCH] Added secure_ssh --- zsh/config.zsh | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) diff --git a/zsh/config.zsh b/zsh/config.zsh index 8ed9087..c964f27 100644 --- a/zsh/config.zsh +++ b/zsh/config.zsh @@ -3,3 +3,20 @@ copy_ssh_keys() { echo -n "Testing..." ssh -o PasswordAuthentication=no $* 'echo Success' } +secure_ssh() { + echo "Copying script over..." + ssh $* 'cat > /tmp/script.sh' <<'EOF' +cp /etc/ssh/sshd_config /etc/ssh/sshd_config.bak +sed -ri'' 's/^(\s*Protocol\s)/#\1/gI' /etc/ssh/sshd_config +sed -ri'' 's/^(\s*UseDNS\s)/#\1/gI' /etc/ssh/sshd_config +sed -ri'' 's/^(\s*PermitEmptyPasswords\s)/#\1/gI' /etc/ssh/sshd_config +sed -ri'' 's/^(\s*PermitRootLogin\s)/#\1/gI' /etc/ssh/sshd_config +(echo -e "Protocol 2\nUseDNS no\nPermitEmptyPasswords no\nPermitRootLogin no";cat /etc/ssh/sshd_config)>/tmp/sshd_config +mv /tmp/sshd_config /etc/ssh/sshd_config +diff -urN /etc/ssh/sshd_config.bak /etc/ssh/sshd_config +sshd -t +mv /etc/ssh/sshd_config.bak /etc/ssh/sshd_config +EOF + echo "Running script..." + ssh -t $* 'chmod +x /tmp/script.sh;command -v sudo >/dev/null 2>&1 && sudo /tmp/script.sh || /tmp/script.sh;rm /tmp/script.sh' +}