27 lines
928 B
Plaintext
27 lines
928 B
Plaintext
-sshkeys (see ref/<type>/parse_poc_<keytype>.go for POC)
|
|
--hostkeys (https://security.stackexchange.com/questions/211106/what-is-the-difference-between-host-and-client-ssh-key-generation)?
|
|
-moduli dhparams generation (dh.c? moduli.c?)
|
|
--ssh-keygen.c, ~L3565
|
|
|
|
- General/common
|
|
-- Locking?
|
|
-- Constants for common file dests
|
|
-- Func to write to dest, backing up dest if exists first
|
|
-- Test ssh config (sshd -t) and rollback if fail
|
|
|
|
- Key generation
|
|
-- DONE: Generate priv/pubkeys
|
|
-- Build key structure
|
|
-- write out base64 with headers to files
|
|
|
|
- SSH Moduli
|
|
-- Do DH param gen in goroutine so we can do other things while it spawns and runs
|
|
-- Check if haveged is running. If not and installed, start it.
|
|
-- Generate moduli
|
|
-- Render to /etc/ssh/moduli format
|
|
--- custom moduli marshaler/unmarshaler? (e.g. https://stackoverflow.com/a/50211222)
|
|
-- Write to dest
|
|
|
|
- Config
|
|
-- Need to merge in changes
|
|
-- Track options in struct? |