diff --git a/files/authorized_keys b/files/authorized_keys new file mode 100644 index 0000000..7b31278 --- /dev/null +++ b/files/authorized_keys @@ -0,0 +1,3 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEJFz0EBsDgO37Z4PmQEs+X90bjfZdMohzCYmHxSq+zz root@br0tkasten +ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBN6WpzsXF4yereWeARNGv5ykrVtDncFohWSY4zKT0jtVnCoV+IoTKu54zMD63dFpc2oD4GggKXYHjuDZBBxjbL8= root@br0tkasten.de +ssh-rsa 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 root@br0tkasten.de \ No newline at end of file diff --git a/tasks/archlinux.yml b/tasks/archlinux.yml index 014e5e6..d7f6d7d 100644 --- a/tasks/archlinux.yml +++ b/tasks/archlinux.yml @@ -2,20 +2,20 @@ - name: install basics connection: local delegate_to: localhost - raw: "lxc exec {{ inventory_hostname }} -- /usr/sbin/pacman -Syu --noconfirm python3 dropbear dropbear-scp wget" + raw: "lxc exec {{ inventory_hostname }} -- /usr/sbin/pacman -Syu --noconfirm python3 openssh wget" - name: setup ssh include: ssh.yml -- name: enable dropbear +- name: enable sshd connection: local delegate_to: localhost - raw: "lxc exec {{ inventory_hostname }} -- systemctl enable dropbear" + raw: "lxc exec {{ inventory_hostname }} -- systemctl enable sshd" -- name: enable dropbear +- name: start dropbear connection: local delegate_to: localhost - raw: "lxc exec {{ inventory_hostname }} -- systemctl restart dropbear" + raw: "lxc exec {{ inventory_hostname }} -- systemctl restart sshd" - name: install software pacman: name={{ archlinux_software }} state=present update_cache=yes diff --git a/tasks/ssh.yml b/tasks/ssh.yml index 8a636f7..6bba4da 100644 --- a/tasks/ssh.yml +++ b/tasks/ssh.yml @@ -6,8 +6,13 @@ - name: get authorized_keys connection: local - delegate_to: localhost - raw: "lxc exec {{ inventory_hostname }} -- wget -O /root/.ssh/authorized_keys https://git.br0tkasten.de/br0tkasten/configs/raw/branch/master/dotfiles/authorized_keys" + delegate_to: localhost + copy: + src: authorized_keys + dest: "/var/lib/lxd/storage-pools/default/containers/{{ inventory_hostname }}/rootfs/root/.ssh/authorized_keys" + owner: root + group: root + mode: 0600 - name: fix file permissions connection: local