aboutsummaryrefslogtreecommitdiff
path: root/rotate-ssh-keys.sh
diff options
context:
space:
mode:
Diffstat (limited to 'rotate-ssh-keys.sh')
-rwxr-xr-xrotate-ssh-keys.sh28
1 files changed, 28 insertions, 0 deletions
diff --git a/rotate-ssh-keys.sh b/rotate-ssh-keys.sh
new file mode 100755
index 0000000..2e3f1fb
--- /dev/null
+++ b/rotate-ssh-keys.sh
@@ -0,0 +1,28 @@
+#!/usr/bin/env bash
+set -Eeuo pipefail
+cd "$(dirname "${BASH_SOURCE[0]}")"
+
+rm -f ./secrets/ssh/*
+ssh-keygen -t rsa -b 4096 -q -N '' -f ./secrets/ssh/vps-box-client
+ssh-keygen -t rsa -b 4096 -q -N '' -f ./secrets/ssh/vps-box-server
+PUBLIC_KEY="$(awk '{print $2}' < ./secrets/ssh/vps-box-server.pub)"
+echo "${TLD},${PINNED_IP} ssh-rsa ${PUBLIC_KEY}" > ./secrets/ssh/known-hosts.txt
+
+# git add ./secrets/ssh/
+# git commit -m "Script: rotate SSH keys"
+
+# rotate() {
+# # FIXME: add email address?
+# # FIXME: use 4096 instead of (default) 2048
+# ssh-keygen -t rsa \
+# -q \
+# -N '' \
+# -f "${1}"
+# }
+
+# rotate ./secrets/ssh/vps-box-client
+# rotate ./secrets/ssh/vps-box-server
+
+
+# FIXME:
+# Commit to repo the rotated files
generated by cgit v1.2.3 (git 2.49.0) at 2025-07-13 22:21:18 +0000