diff options
-rw-r--r-- | Makefile | 8 | ||||
-rw-r--r-- | src/infrastructure/keys/known_hosts.txt | 7 |
2 files changed, 13 insertions, 2 deletions
@@ -48,13 +48,17 @@ $(public-ssh).stripped: $(public-ssh).txt cut -d' ' -f6- < $(public-ssh).txt > $@ -upload-secrets: $(prod-secrets.txt) $(public-ssh).stripped +upload-secrets: $(prod-secrets.txt) $(public-ssh).stripped \ + src/infrastructure/keys/known_hosts.txt ssh euandre.org sudo -u secrets-keeper 'rm -f /opt/secrets/*' rsync \ --rsync-path='sudo -u secrets-keeper rsync' \ --chmod=000 \ -avzP \ - $(prod-secrets.txt) $(public-ssh).stripped euandre.org:/opt/secrets/ + $(prod-secrets.txt) \ + $(public-ssh).stripped \ + src/infrastructure/keys/known_hosts.txt \ + euandre.org:/opt/secrets/ ## Generate the ".ssh/authorized_keys" file and upload diff --git a/src/infrastructure/keys/known_hosts.txt b/src/infrastructure/keys/known_hosts.txt new file mode 100644 index 0000000..44fc283 --- /dev/null +++ b/src/infrastructure/keys/known_hosts.txt @@ -0,0 +1,7 @@ +# rsync.net public keys for suyin (personal) and zhu-li (pilotis.net) +# Verified in 2023-03-08 at: +# https://www.rsync.net/resources/fingerprints.txt + +zh3051.rsync.net ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJtclizeBy1Uo3D86HpgD3LONGVH0CJ0NT+YfZlldAJd +zh3051.rsync.net ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLR2uz+YLn2KiQK0Luu8rhfWS6LHgUfGAWB1j8rM2MKn4KZ2/LhIX1CYkPKMTPxHr6mzayeL1T1hyJIylxXv0BY= +zh3051.rsync.net ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDPgHxQyaDaVxUefoUJZO/lITh0Gp0sqbP7HejQcCfZi7gAcuM6/IAuUXLHFImefCHh52x6T/cHxgL1qz26GKgdxykl06WRXlRIuE45QFSy/cd9JKr6l58fKq30ApmXRsCNwFrMlFPoEpCTqxzddZ9cLXs1Yt9dRxvFlQVEuAzw7ayvt8DE6RP9/CHYVp54wbbvUToECGwu70sxY1vFg51K+vNpvJ3J0t5j3s4c1Wls4BrIwqi2U8kqCq9Nj2CUIQqjM+93CSqEacR3qOGvG/6QMzd733wzpJ/iZee+lcyTYzA0YNMosnaF01hrv7NMwtZ6xRFLlJZtMZ7JpfySrOBr |