From: Thierry Parmentelat <thierry.parmentelat@inria.fr>
Date: Tue, 23 Jun 2015 14:01:15 +0000 (+0200)
Subject: backing off on the idea of an early ssh access that is more harmful than helpful
X-Git-Tag: bootcd-5.3-1~1
X-Git-Url: http://git.onelab.eu/?p=bootcd.git;a=commitdiff_plain;h=749c4ca72aae6cbfbc57ff7d9bf391f16c5b0055

backing off on the idea of an early ssh access that is more harmful than helpful
---

diff --git a/build.sh b/build.sh
index a68e9d4..5ce3605 100755
--- a/build.sh
+++ b/build.sh
@@ -353,12 +353,18 @@ EOF
     # build/passwd copied out by prep.sh
     sed -e "s@^root:[^:]*:\(.*\)@root:$ROOT_PASSWORD:\1@" ${VARIANT}/passwd >$OVERLAY/etc/passwd
 
-    # recent bootCDs rely on a standard systemd startup sequence
-    # so allow debug key to enter in this context whenever that makes sense
-    mkdir -p $OVERLAY/root/.ssh
-    chmod 700 $OVERLAY/root/.ssh
-    cp $PLC_DEBUG_SSH_KEY_PUB $OVERLAY/root/.ssh/authorized_keys
-    chmod 600 $OVERLAY/root/.ssh/authorized_keys
+# this is more harmful than helpful
+# idea being, since we start a full-featured fedora system now, it would
+# have been nice to be able to enter sshd very early on - before bm has even been downloaded
+# however somehow it appears that these lines ruin all chances to enter ssh at all
+# either early or even later on;
+# plus, it is unclear what this would give on non=systemd nodes, so I am backing off for now    
+#    # recent bootCDs rely on a standard systemd startup sequence
+#    # so allow debug key to enter in this context whenever that makes sense
+#    mkdir -p $OVERLAY/root/.ssh
+#    chmod 700 $OVERLAY/root/.ssh
+#    cp $PLC_DEBUG_SSH_KEY_PUB $OVERLAY/root/.ssh/authorized_keys
+#    chmod 600 $OVERLAY/root/.ssh/authorized_keys
 
     # Install node configuration file (e.g., if node has no floppy disk or USB slot)
     if [ -f "$NODE_CONFIGURATION_FILE" ] ; then