From 40fcdc01c536b5b8b0867df0765e11649f8179e3 Mon Sep 17 00:00:00 2001 From: Tommy Date: Sun, 25 Jun 2023 03:11:43 -0700 Subject: [PATCH] Fix /etc/ssh/ssh_config.d/10-custom.conf permission --- Fedora-Workstation-38.sh | 1 + GCP-Debian-11.sh | 1 + Proxmox-7.sh | 1 + RHEL-Server-9.sh | 1 + Ubuntu-22.04-Desktop.sh | 1 + 5 files changed, 5 insertions(+) diff --git a/Fedora-Workstation-38.sh b/Fedora-Workstation-38.sh index 39a777f..95a36e2 100644 --- a/Fedora-Workstation-38.sh +++ b/Fedora-Workstation-38.sh @@ -41,6 +41,7 @@ sudo curl https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/syste echo "GSSAPIAuthentication no" | sudo tee /etc/ssh/ssh_config.d/10-custom.conf echo "VerifyHostKeyDNS yes" | sudo tee -a /etc/ssh/ssh_config.d/10-custom.conf +sudo chmod 644 /etc/ssh/ssh_config.d/10-custom.conf #Setup NTS sudo rm -rf /etc/chrony/chrony.conf diff --git a/GCP-Debian-11.sh b/GCP-Debian-11.sh index 7050c2d..021aeb4 100644 --- a/GCP-Debian-11.sh +++ b/GCP-Debian-11.sh @@ -2,6 +2,7 @@ echo 'GSSAPIAuthentication no VerifyHostKeyDNS yes' | sudo tee /etc/ssh/ssh_config.d/10-custom.conf +sudo chmod 644 /etc/ssh/ssh_config.d/10-custom.conf sudo sed -i 's/#GSSAPIAuthentication no/GSSAPIAuthentication no/g' /etc/ssh/sshd_config sudo systemctl restart sshd diff --git a/Proxmox-7.sh b/Proxmox-7.sh index 0d8f15d..e0093f8 100644 --- a/Proxmox-7.sh +++ b/Proxmox-7.sh @@ -4,6 +4,7 @@ echo 'GSSAPIAuthentication no VerifyHostKeyDNS yes' | tee /etc/ssh/ssh_config.d/10-custom.conf +sudo chmod 644 /etc/ssh/ssh_config.d/10-custom.conf sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/g' /etc/ssh/sshd_config sed -i 's/#GSSAPIAuthentication no/GSSAPIAuthentication no/g' /etc/ssh/sshd_config mkdir -p /etc/systemd/system/sshd.service.d diff --git a/RHEL-Server-9.sh b/RHEL-Server-9.sh index fc4cbad..27b6d70 100644 --- a/RHEL-Server-9.sh +++ b/RHEL-Server-9.sh @@ -4,6 +4,7 @@ mkdir -p /etc/ssh/ssh_config.d /etc/ssh/sshd_config.d echo 'GSSAPIAuthentication no VerifyHostKeyDNS yes' | sudo tee /etc/ssh/ssh_config.d/10-custom.conf +sudo chmod 644 /etc/ssh/ssh_config.d/10-custom.conf echo 'X11Forwarding no GSSAPIAuthentication no PasswordAuthentication no' | sudo tee /etc/ssh/sshd_config.d/10-custom.conf diff --git a/Ubuntu-22.04-Desktop.sh b/Ubuntu-22.04-Desktop.sh index 8db467e..6900011 100644 --- a/Ubuntu-22.04-Desktop.sh +++ b/Ubuntu-22.04-Desktop.sh @@ -38,6 +38,7 @@ sudo curl https://raw.githubusercontent.com/GrapheneOS/infrastructure/main/syste echo "GSSAPIAuthentication no" | sudo tee /etc/ssh/ssh_config.d/10-custom.conf echo "VerifyHostKeyDNS yes" | sudo tee -a /etc/ssh/ssh_config.d/10-custom.conf +sudo chmod 644 /etc/ssh/ssh_config.d/10-custom.conf #Setup NTS sudo systemctl disable systemd-timesyncd