1
0
This commit is contained in:
michael 2023-12-10 00:19:14 +13:00
parent 778bbd8b4f
commit a06a07ddbe
9 changed files with 100 additions and 6 deletions

View File

@ -1,10 +1,33 @@
FROM ubuntu:latest
RUN apt update && apt install openssh-server sudo scp -y
ENV DEBIAN_FRONTEND=noninteractive
RUN useradd -rm -d /home/ubuntu -s /bin/bash -g root -G sudo -u 1000 test
RUN apt update && \
apt install --no-install-recommends -y \
nano \
openssh-server \
openssh-client \
rsync \
sudo && \
rm -rf /var/lib/apt/lists/* && \
useradd -m -d /home/user -s /bin/bash -U -G sudo -u 1000 user && \
echo 'user ALL=(ALL) NOPASSWD:ALL' >> /etc/sudoers && \
mkdir /home/user/.ssh/
RUN echo 'test:test' | chpasswd
COPY authorized_keys config id_ed25519 id_ed25519.pub known_hosts /home/user/.ssh/
COPY sshd_config ssh_host_ed25519_key ssh_host_ed25519_key.pub /etc/ssh/
RUN chown -R user:user /home/user/.ssh && \
chmod 644 /home/user/.ssh/authorized_keys && \
chmod 600 /home/user/.ssh/config && \
chmod 600 /home/user/.ssh/id_ed25519 && \
chmod 600 /home/user/.ssh/id_ed25519.pub && \
chmod 600 /home/user/.ssh/known_hosts
RUN chown root:root /etc/ssh/* && \
chmod 644 /etc/ssh/sshd_config && \
chmod 600 /etc/ssh/ssh_host_ed25519_key && \
chmod 644 /etc/ssh/ssh_host_ed25519_key.pub
RUN service ssh start

1
authorized_keys Normal file
View File

@ -0,0 +1 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE26RPGDs9sn0Sf99pH87Eq7ipDJ6tI5ojx0NfdhEr2B

36
config Normal file
View File

@ -0,0 +1,36 @@
Host mail
Hostname sftp-source.mail.svc.cluster.internal
IdentityFile /home/user/.ssh/id_ed25519
User user
HostKeyAlgorithms=+ssh-ed25519
Host cloud
Hostname sftp-source.cloud.svc.cluster.internal
IdentityFile /home/user/.ssh/id_ed25519
User user
HostKeyAlgorithms=+ssh-ed25519
Host code
Hostname sftp-source.code.svc.cluster.internal
IdentityFile /home/user/.ssh/id_ed25519
User user
HostKeyAlgorithms=+ssh-ed25519
Host social
Hostname sftp-source.social.svc.cluster.internal
IdentityFile /home/user/.ssh/id_ed25519
User user
HostKeyAlgorithms=+ssh-ed25519
Host matrix
Hostname sftp-source.matrix.svc.cluster.internal
IdentityFile /home/user/.ssh/id_ed25519
User user
HostKeyAlgorithms=+ssh-ed25519
Host files
Hostname sftp-source.files.svc.cluster.internal
IdentityFile /home/user/.ssh/id_ed25519
User user
HostKeyAlgorithms=+ssh-ed25519

7
id_ed25519 Normal file
View File

@ -0,0 +1,7 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACBNukTxg7PbJ9En/faR/OxKu4qQyerSOaI8dDX3YRK9gQAAAJglASzhJQEs
4QAAAAtzc2gtZWQyNTUxOQAAACBNukTxg7PbJ9En/faR/OxKu4qQyerSOaI8dDX3YRK9gQ
AAAEBaA+9x3FzHUjmoj6Smm0LCY4bC4RVRe0PoPuPUlW4EcU26RPGDs9sn0Sf99pH87Eq7
ipDJ6tI5ojx0NfdhEr2BAAAAD21pY2hhZWxAbGF0NTQyMAECAwQFBg==
-----END OPENSSH PRIVATE KEY-----

1
id_ed25519.pub Normal file
View File

@ -0,0 +1 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE26RPGDs9sn0Sf99pH87Eq7ipDJ6tI5ojx0NfdhEr2B

6
known_hosts Normal file
View File

@ -0,0 +1,6 @@
sftp-source.cloud.svc.cluster.internal ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h
sftp-source.code.svc.cluster.internal ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h
sftp-source.matrix.svc.cluster.internal ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h
sftp-source.social.svc.cluster.internal ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h
sftp-source.files.svc.cluster.internal ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h
sftp-source.mail.svc.cluster.internal ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h

7
ssh_host_ed25519_key Normal file
View File

@ -0,0 +1,7 @@
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACCXh5j4aROx8hfr+oZpyya27uGfgS8ZendpPfDW0SN9IQAAAJjZJLWm2SS1
pgAAAAtzc2gtZWQyNTUxOQAAACCXh5j4aROx8hfr+oZpyya27uGfgS8ZendpPfDW0SN9IQ
AAAEAOyT0w3/3vSEA0s3yA18H7hQM9IAVhn6oIZYpnGaHlf5eHmPhpE7HyF+v6hmnLJrbu
4Z+BLxl6d2k98NbRI30hAAAAD21pY2hhZWxAbGF0NTQyMAECAwQFBg==
-----END OPENSSH PRIVATE KEY-----

1
ssh_host_ed25519_key.pub Normal file
View File

@ -0,0 +1 @@
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJeHmPhpE7HyF+v6hmnLJrbu4Z+BLxl6d2k98NbRI30h

12
sshd_config Normal file
View File

@ -0,0 +1,12 @@
Port 22
AddressFamily any
ListenAddress 0.0.0.0
ListenAddress ::
HostKey /etc/ssh/ssh_host_ed25519_key
PubkeyAuthentication yes
AuthorizedKeysFile .ssh/authorized_keys
PasswordAuthentication no
KbdInteractiveAuthentication no
UsePAM yes
PrintMotd no
Subsystem sftp /usr/lib/ssh/sftp-server