ncp.sh,SSH.sh: Move root login configuration to SSH.sh

theCalcaholic · theCalcaholic · commit 96b2c19823ae · 2024-05-02T02:48:28.000+02:00
Signed-off-by: Tobias K &lt;6317548+theCalcaholic@users.noreply.github.com&gt;
diff --git a/bin/ncp/NETWORKING/SSH.sh b/bin/ncp/NETWORKING/SSH.sh
@@ -11,6 +11,13 @@
 install() {
   apt-get update
   apt-get install -y --no-install-recommends openssh-server
+  if grep '^PermitRootLogin' /etc/ssh/sshd_config
+  then
+    sed -i -e 's/^PermitRootLogin.*$/PermitRootLogin prohibit-password/' /etc/ssh/sshd_config
+  else
+    echo 'PermitRootLogin prohibit-password' >> /etc/ssh/sshd_config
+  fi
+  systemctl reload ssh
  }
 
 is_active()
diff --git a/ncp.sh b/ncp.sh
@@ -83,7 +83,6 @@ EOF
   is_docker || is_lxc || {
     chsh -s /usr/sbin/nologin "$WEBADMIN"
     passwd -l root
-    sed -i -e 's/^PermitRootLogin.*$/PermitRootLogin No/' /etc/ssh/sshd_config
   }
 
   ## NCP LAUNCHER
diff --git a/updates/1.54.0.sh b/updates/1.54.0.sh
@@ -7,7 +7,13 @@ if getent passwd "root" | grep -e '/usr/sbin/nologin'
 then
   chsh -s /bin/bash root
   passwd -l root
-  sed -i -e 's/^PermitRootLogin.*$/PermitRootLogin No/' /etc/ssh/sshd_config
+  if grep '^PermitRootLogin' /etc/ssh/sshd_config
+  then
+    sed -i -e 's/^PermitRootLogin.*$/PermitRootLogin prohibit-password/' /etc/ssh/sshd_config
+  else
+    echo 'PermitRootLogin prohibit-password' >> /etc/ssh/sshd_config
+  fi
+  systemctl reload ssh
 fi
 echo "done."
 

Original file line number	Diff line number	Diff line change
`@@ -83,7 +83,6 @@ EOF`
`83`	`83`	`is_docker \|\| is_lxc \|\| {`
`84`	`84`	`chsh -s /usr/sbin/nologin "$WEBADMIN"`
`85`	`85`	`passwd -l root`
`86`		`- sed -i -e 's/^PermitRootLogin.*$/PermitRootLogin No/' /etc/ssh/sshd_config`
`87`	`86`	`}`
`88`	`87`
`89`	`88`	`## NCP LAUNCHER`