From 91d5fec541ecc9147d89a2c25f3ba76ce1895bb7 Mon Sep 17 00:00:00 2001 From: Paul Buetow Date: Sat, 16 May 2026 15:22:00 +0300 Subject: frontends + packages: add dserver/dtail support for FreeBSD and Rocky Adds FreeBSD .tpl variants of the existing dserver templates and a matching pkg-dtail-freebsd.sh packaging script, plus a pkg-dtail-rpm.sh script and packages/files/dtail-rocky/ (systemd units, key-cache script, dtail.json) for the Rocky Linux dtail build. --- .../dserver-update-key-cache-freebsd.sh.tpl | 33 ++++++++++++++++++++++ 1 file changed, 33 insertions(+) create mode 100644 frontends/scripts/dserver-update-key-cache-freebsd.sh.tpl (limited to 'frontends/scripts') diff --git a/frontends/scripts/dserver-update-key-cache-freebsd.sh.tpl b/frontends/scripts/dserver-update-key-cache-freebsd.sh.tpl new file mode 100644 index 0000000..22173d7 --- /dev/null +++ b/frontends/scripts/dserver-update-key-cache-freebsd.sh.tpl @@ -0,0 +1,33 @@ +#!/bin/sh +# Refresh the dserver SSH key cache from user authorized_keys files. +# Called by /usr/local/etc/periodic/daily/200.dserver-update-key-cache. + +CACHEDIR=/var/run/dserver/cache +DSERVER_USER=dserver +DSERVER_GROUP=dserver + +echo 'Updating SSH key cache' + +ls /home/ | while read remoteuser; do + keysfile="/home/$remoteuser/.ssh/authorized_keys" + + if [ -f "$keysfile" ]; then + cachefile="$CACHEDIR/$remoteuser.authorized_keys" + echo "Caching $keysfile -> $cachefile" + + cp "$keysfile" "$cachefile" + chown "$DSERVER_USER:$DSERVER_GROUP" "$cachefile" + chmod 600 "$cachefile" + fi +done + +# Remove stale cache entries for users whose authorized_keys no longer exist +find "$CACHEDIR" -name '*.authorized_keys' -type f | while read cachefile; do + remoteuser=$(basename "$cachefile" .authorized_keys) + if [ ! -f "/home/$remoteuser/.ssh/authorized_keys" ]; then + echo "Deleting obsolete cache file $cachefile" + rm "$cachefile" + fi +done + +echo 'All set...' -- cgit v1.2.3