You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
37 lines
1.0 KiB
37 lines
1.0 KiB
5 years ago
|
#!/usr/bin/env sh
|
||
|
|
|
||
|
|
ssh_lock() {
|
||
|
|
sudo chmod -v 400 "${HOME}"/.ssh/*
|
||
|
|
sudo chattr -V +i "${HOME}"/.ssh/authorized_keys
|
||
|
|
sudo chattr -V +i "${HOME}"/.ssh
|
||
|
|
}
|
||
|
|
|
||
|
|
ssh_unlock() {
|
||
|
|
sudo chattr -V -i "${HOME}"/.ssh
|
||
|
|
sudo chattr -V -i "${HOME}"/.ssh/authorized_keys
|
||
|
|
sudo chmod -v 600 "${HOME}"/.ssh/*
|
||
|
|
}
|
||
|
|
|
||
|
|
case "${1}" in
|
||
|
|
"lock")
|
||
|
|
printf "\033[34m:: \033[97m Locking %s/.ssh\033[0m" "${HOME}"
|
||
|
|
ssh_lock
|
||
|
|
;;
|
||
|
|
"unlock")
|
||
|
|
printf "\033[34m:: \033[97m Unlocking %s/.ssh\033[0m" "${HOME}"
|
||
|
|
ssh_unlock
|
||
|
|
;;
|
||
|
|
"toggle")
|
||
|
|
DA=$(lsattr -d "${HOME}/.ssh" | cut -d\ -f1 | grep -q 'i')$?
|
||
|
|
FA=$(lsattr "${HOME}/.ssh/authorized_keys" | cut -d\ -f1 | grep -q 'i')$?
|
||
|
|
FP=$(stat -c "%A" "${HOME}/.ssh/authorized_keys" | grep -q 'w')$?
|
||
|
|
if [ "${DA}" -eq 0 ] && [ "${FA}" -eq 0 ] && [ "${FP}" -ne 0 ]; then
|
||
|
|
printf "\033[34m:: \033[97m %s/.ssh secured...unlocking\033[0m" "${HOME}"
|
||
|
|
ssh_unlock
|
||
|
|
else
|
||
|
|
printf "\033[34m:: \033[97m %s/.ssh insecure...locking\033[0m" "${HOME}"
|
||
|
|
ssh_lock
|
||
|
|
fi
|
||
|
|
;;
|
||
|
|
esac
|