On Fri, 4 Apr 2008, Cristian Ionescu-Idbohrn wrote: > Let me introduce myself. Home user here, no windoze fan and not idiot ;-) > > A while ago I tried to get some comments on the subject, but no joy :( > > I'm running pfsense off a cd + usb stick, and what I'm trying to do is to > put some ssh keys on a usb-stick (same place as config.xml) and copy them > upp om boot so new ones don't need to be generated every single time I > boot the firewall. > > I did find the <earlyshellcmd> config option, and thought it would be > useful. It is, with unpredictable and undesired side effects :( Yes, my > saved host keys _are_ copied from the usb-stick to the ram file system, > but sshd startup fails. No <earlyshellcmd> in config.xml: all fine and > dandy, but the irritating "WARNING: REMOTE HOST IDENTIFICATION HAS > CHANGED!" comes up every time :( > > Does anyone know of some solution/workaround to this?
Replying to myself :( Yes, there seems to be at least one simple solution: <system> ... <shellcmd>umask 177 && cp -f /conf/ssh_host_* /etc/ssh/</shellcmd> ... </system> <earlyshellcmd> might work too. Didn't try. Can anyone else confirm? Cheers, -- Cristian --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
