scripts copied from penme.git

author: Andrew Cady <d@jerkface.net> 2021-03-04 13:33:48 -0500
committer: Andrew Cady <d@jerkface.net> 2021-03-04 13:33:48 -0500
commit: fd9c04398afd1ae01e73b4b2c1c9214e01b0001e (patch)
tree: 9a94e30fbf50cef6efebca8790146413510fe650
parent: 2d565dd213f5342b5a76e264ef6894da283b6c98 (diff)
4 files changed, 57 insertions, 0 deletions
diff --git a/dot/local/bin/penme b/dot/local/bin/penme
new file mode 100755
index 0000000..1a46e6c
--- /dev/null
+++ b/dot/local/bin/penme
@@ -0,0 +1,44 @@
+#!/bin/sh
+set -e
+if [ "$(id -u)" -ne 0 ]
+then
+        exec sudo -- "$0" "$@"
+fi
+vprintf() { [ ! "$VERBOSE" ] || printf "$@" >&2; }
+write()
+{
+        printf '%s\n' "$line" >> /root/.ssh/authorized_keys
+        vprintf 'New root authorization: %s\n' "$line"
+        [ "$VERBOSE" ] || printf '%s\n' "$line" >&2
+}
+scan_network()
+{
+        arp-scan --localnet |
+        while read ip junk
+        do
+                case "$ip" in
+                        *.*.*.*) ;;
+                        *) continue ;;
+                esac
+                vprintf 'ARP scan found IP: %s\n' "$ip"
+                ( grep -q " penme host key @ $ip\$" /root/.ssh/authorized_keys ) || echo $ip
+        done
+}
+mkdir -p /root/.ssh
+[ -e /root/.ssh/authorized_keys ] || touch /root/.ssh/authorized_keys
+which arp-scan >/dev/null &&
+which ssh-keyscan >/dev/null ||
+apt install --no-upgrade arp-scan openssh-client || true
+ssh-keyscan - $(scan_network) 2>/dev/null |
+while read ip key
+do
+        line=$(printf '%s penme host key @ %s\n' "$key" "$ip")
+        grep -q -Fx "$line" /root/.ssh/authorized_keys && vprintf 'Already authorized: %s\n' "$line" ||
+        write "$line" /root/.ssh/authorized_keys
+done
diff --git a/dot/local/bin/penyou b/dot/local/bin/penyou
new file mode 100755
index 0000000..cc7fdda
--- /dev/null
+++ b/dot/local/bin/penyou
@@ -0,0 +1,4 @@
+#!/bin/sh
+sudo=$([ $(id -u) -eq 0 ] || echo sudo --)
+exec $sudo ssh -i /etc/ssh/ssh_host_ed25519_key -l root "$@"
diff --git a/dot/local/bin/sash b/dot/local/bin/sash
new file mode 120000
index 0000000..62f8dc8
--- /dev/null
+++ b/dot/local/bin/sash
@@ -0,0 +1 @@
+penyou
+\ No newline at end of file
diff --git a/dot/local/bin/unpenme b/dot/local/bin/unpenme
new file mode 100755
index 0000000..2759dad
--- /dev/null
+++ b/dot/local/bin/unpenme
@@ -0,0 +1,8 @@
+#!/bin/sh
+if [ "$(id -u)" -ne 0 ]
+then
+        exec sudo -- "$0" "$@"
+fi
+sedprog='/ penme host key @ [0-9]+\.[0-9].[0-9]+\.[0-9]+/ d'
+FORREALS=-i~penme
+sed ${FORREALS} -E -e "$sedprog"  /root/.ssh/authorized_keys
author	Andrew Cady <d@jerkface.net>	2021-03-04 13:33:48 -0500
committer	Andrew Cady <d@jerkface.net>	2021-03-04 13:33:48 -0500
commit	fd9c04398afd1ae01e73b4b2c1c9214e01b0001e (patch)
tree	9a94e30fbf50cef6efebca8790146413510fe650
parent	2d565dd213f5342b5a76e264ef6894da283b6c98 (diff)

diff --git a/dot/local/bin/penme b/dot/local/bin/penme new file mode 100755 index 0000000..1a46e6c --- /dev/null +++ b/dot/local/bin/penme
@@ -0,0 +1,44 @@
	1	#!/bin/sh
	2	set -e
	3	if [ "$(id -u)" -ne 0 ]
	4	then
	5	exec sudo -- "$0" "$@"
	6	fi
	7
	8	vprintf() { [ ! "$VERBOSE" ] \|\| printf "$@" >&2; }
	9
	10	write()
	11	{
	12	printf '%s\n' "$line" >> /root/.ssh/authorized_keys
	13	vprintf 'New root authorization: %s\n' "$line"
	14	[ "$VERBOSE" ] \|\| printf '%s\n' "$line" >&2
	15	}
	16
	17	scan_network()
	18	{
	19	arp-scan --localnet \|
	20	while read ip junk
	21	do
	22	case "$ip" in
	23	...) ;;
	24	*) continue ;;
	25	esac
	26	vprintf 'ARP scan found IP: %s\n' "$ip"
	27	( grep -q " penme host key @ $ip\$" /root/.ssh/authorized_keys ) \|\| echo $ip
	28	done
	29	}
	30
	31	mkdir -p /root/.ssh
	32	[ -e /root/.ssh/authorized_keys ] \|\| touch /root/.ssh/authorized_keys
	33
	34	which arp-scan >/dev/null &&
	35	which ssh-keyscan >/dev/null \|\|
	36	apt install --no-upgrade arp-scan openssh-client \|\| true
	37
	38	ssh-keyscan - $(scan_network) 2>/dev/null \|
	39	while read ip key
	40	do
	41	line=$(printf '%s penme host key @ %s\n' "$key" "$ip")
	42	grep -q -Fx "$line" /root/.ssh/authorized_keys && vprintf 'Already authorized: %s\n' "$line" \|\|
	43	write "$line" /root/.ssh/authorized_keys
	44	done


diff --git a/dot/local/bin/penyou b/dot/local/bin/penyou new file mode 100755 index 0000000..cc7fdda --- /dev/null +++ b/dot/local/bin/penyou
@@ -0,0 +1,4 @@
	1	#!/bin/sh
	2	sudo=$([ $(id -u) -eq 0 ] \|\| echo sudo --)
	3	exec $sudo ssh -i /etc/ssh/ssh_host_ed25519_key -l root "$@"
	4


diff --git a/dot/local/bin/sash b/dot/local/bin/sash new file mode 120000 index 0000000..62f8dc8 --- /dev/null +++ b/dot/local/bin/sash
@@ -0,0 +1 @@
		penyou \ No newline at end of file


diff --git a/dot/local/bin/unpenme b/dot/local/bin/unpenme new file mode 100755 index 0000000..2759dad --- /dev/null +++ b/dot/local/bin/unpenme
@@ -0,0 +1,8 @@
	1	#!/bin/sh
	2	if [ "$(id -u)" -ne 0 ]
	3	then
	4	exec sudo -- "$0" "$@"
	5	fi
	6	sedprog='/ penme host key @ [0-9]+\.[0-9].[0-9]+\.[0-9]+/ d'
	7	FORREALS=-i~penme
	8	sed ${FORREALS} -E -e "$sedprog" /root/.ssh/authorized_keys