remove SSH keys when snapshot restore detected

2015-06-17 01:24:36 -07:00 · 2015-06-17 01:24:36 -07:00 · 8f935148d0
parent 8afb88356a
commit 8f935148d0
1 changed files with 4 additions and 1 deletions
--- a/install.sh
+++ b/install.sh
@ -813,11 +813,14 @@ update_shadow_if_changed() {
 		# change password if file was touched
 		local encrypted_password=$(awk -F: '$1 == "root" { print $2 }' ${etcdir}/shadow)
 		if [ "${encrypted_password}" != "x" ]; then
+			log "Snapshot restore detected."
 			usermod -p "${encrypted_password}" root
 			if [ ${#encrypted_password} -gt 1 ]; then
 				chage -d 0 root
 			fi
-			log "Snapshot restore detected; password has been reset."
+			log "Password has been reset."
+			rm -f /etc/ssh/ssh_host_key /etc/ssh/ssh_host_*_key
+			log "SSH host keys will be regenerated."
 		fi
 	fi
 	cat > ${etcdir}/shadow <<-EOF