Always search for ssh keys
This patch ensures that a list of public/private ssh keys is always generated. Closes-Bug: 1731049 Change-Id: Ibc6eecafe96b97107e14ae3d0f92c4ad6018228c
This commit is contained in:
Major Hayden
parent
79b3d25070
commit
bb9de60355
@ -75,6 +75,9 @@
|
|||||||
# The shell command will always report 'changed' so we need to
|
# The shell command will always report 'changed' so we need to
|
||||||
# ignore that since this role is supposed to be idempotent.
|
# ignore that since this role is supposed to be idempotent.
|
||||||
changed_when: false
|
changed_when: false
|
||||||
|
check_mode: no
|
||||||
|
tags:
|
||||||
|
- always
|
||||||
|
|
||||||
- name: Public host key files must have mode 0644 or less
|
- name: Public host key files must have mode 0644 or less
|
||||||
file:
|
file:
|
||||||
@ -90,9 +93,12 @@
|
|||||||
- name: Determine existing private ssh host keys
|
- name: Determine existing private ssh host keys
|
||||||
shell: ls /etc/ssh/*_key
|
shell: ls /etc/ssh/*_key
|
||||||
register: private_ssh_host_keys
|
register: private_ssh_host_keys
|
||||||
# The sheel command will always report 'changed' so we need to
|
# The shell command will always report 'changed' so we need to
|
||||||
# ignore that since this role is supposed to be idempotent
|
# ignore that since this role is supposed to be idempotent
|
||||||
changed_when: false
|
changed_when: false
|
||||||
|
check_mode: no
|
||||||
|
tags:
|
||||||
|
- always
|
||||||
|
|
||||||
- name: Private host key files must have mode 0600 or less
|
- name: Private host key files must have mode 0600 or less
|
||||||
file:
|
file:
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user