5 # Required-Start: $remote_fs $syslog
6 # Required-Stop: $remote_fs $syslog
7 # Default-Start: 2 3 4 5
9 # Short-Description: OpenBSD Secure Shell server
12 # Notice: this file has been slightly adjusted by the
13 # Grml team so the script supports key-generation
15 # Configurable options:
16 KEYGEN=/usr/bin/ssh-keygen
17 RSA1_KEY=/etc/ssh/ssh_host_key
18 RSA_KEY=/etc/ssh/ssh_host_rsa_key
19 DSA_KEY=/etc/ssh/ssh_host_dsa_key
20 ECDSA_KEY=/etc/ssh/ssh_host_ecdsa_key
21 ED25519_KEY=/etc/ssh/ssh_host_ed25519_key
25 # /etc/init.d/ssh: start and stop the OpenBSD "secure shell(tm)" daemon
27 test -x /usr/sbin/sshd || exit 0
28 ( /usr/sbin/sshd -\? 2>&1 | grep -q OpenSSH ) 2>/dev/null || exit 0
32 if test -f /etc/default/ssh; then
36 . /lib/lsb/init-functions
39 SSHD_OPTS="$SSHD_OPTS $2"
42 # Are we running from init?
44 ([ "$previous" ] && [ "$runlevel" ]) || [ "$runlevel" = S ]
48 if init_is_upstart; then
53 check_for_no_start() {
54 # forget it if we're trying to start, and /etc/ssh/sshd_not_to_be_run exists
55 if [ -e /etc/ssh/sshd_not_to_be_run ]; then
56 if [ "$1" = log_end_msg ]; then
59 if ! run_by_init; then
60 log_action_msg "OpenBSD Secure Shell server not in use (/etc/ssh/sshd_not_to_be_run)" || true
67 if [ ! -c /dev/null ]; then
68 if [ "$1" = log_end_msg ]; then
71 if ! run_by_init; then
72 log_action_msg "/dev/null is not a character device!" || true
79 # Create the PrivSep empty dir if necessary
80 if [ ! -d /var/run/sshd ]; then
82 chmod 0755 /var/run/sshd
87 if [ ! -e /etc/ssh/sshd_not_to_be_run ]; then
88 /usr/sbin/sshd $SSHD_OPTS -t || exit 1
94 if ! test -f $RSA1_KEY ; then
95 log_action_msg "Generating SSH1 RSA host key..."
96 $KEYGEN -t rsa1 -f $RSA1_KEY -C '' -N '' || exit 1
99 if ! test -f $RSA_KEY ; then
100 log_action_msg "Generating SSH2 RSA host key..."
101 $KEYGEN -t rsa -f $RSA_KEY -C '' -N '' || exit 1
104 if ! test -f $DSA_KEY ; then
105 log_action_msg "Generating SSH2 DSA host key..."
106 $KEYGEN -t dsa -f $DSA_KEY -C '' -N '' || exit 1
109 if ! test -f "$ECDSA_KEY" && grep -q "$ECDSA_KEY" /etc/ssh/sshd_config ; then
110 log_action_msg "Generating SSH2 ECDSA host key..."
111 $KEYGEN -t ecdsa -f "$ECDSA_KEY" -C '' -N '' || exit 1
114 if ! test -f "$ED25519_KEY" && grep -q "$ED25519_KEY" /etc/ssh/sshd_config ; then
115 log_action_msg "Generating SSH2 ED25519 host key..."
116 $KEYGEN -t ed25519 -f "$ED25519_KEY" -C '' -N '' || exit 1
120 export PATH="${PATH:+$PATH:}/usr/sbin:/sbin"
129 log_daemon_msg "Starting OpenBSD Secure Shell server" "sshd" || true
130 if start-stop-daemon --start --quiet --oknodo --pidfile /var/run/sshd.pid --exec /usr/sbin/sshd -- $SSHD_OPTS; then
131 log_end_msg 0 || true
133 log_end_msg 1 || true
138 log_daemon_msg "Stopping OpenBSD Secure Shell server" "sshd" || true
139 if start-stop-daemon --stop --quiet --oknodo --pidfile /var/run/sshd.pid; then
140 log_end_msg 0 || true
142 log_end_msg 1 || true
151 log_daemon_msg "Reloading OpenBSD Secure Shell server's configuration" "sshd" || true
152 if start-stop-daemon --stop --signal 1 --quiet --oknodo --pidfile /var/run/sshd.pid --exec /usr/sbin/sshd; then
153 log_end_msg 0 || true
155 log_end_msg 1 || true
164 log_daemon_msg "Restarting OpenBSD Secure Shell server" "sshd" || true
165 start-stop-daemon --stop --quiet --oknodo --retry 30 --pidfile /var/run/sshd.pid
166 check_for_no_start log_end_msg
167 check_dev_null log_end_msg
168 if start-stop-daemon --start --quiet --oknodo --pidfile /var/run/sshd.pid --exec /usr/sbin/sshd -- $SSHD_OPTS; then
169 log_end_msg 0 || true
171 log_end_msg 1 || true
180 log_daemon_msg "Restarting OpenBSD Secure Shell server" "sshd" || true
182 start-stop-daemon --stop --quiet --retry 30 --pidfile /var/run/sshd.pid || RET="$?"
186 check_for_no_start log_end_msg
187 check_dev_null log_end_msg
188 if start-stop-daemon --start --quiet --oknodo --pidfile /var/run/sshd.pid --exec /usr/sbin/sshd -- $SSHD_OPTS; then
189 log_end_msg 0 || true
191 log_end_msg 1 || true
196 log_progress_msg "(not running)" || true
197 log_end_msg 0 || true
201 log_progress_msg "(failed to stop)" || true
202 log_end_msg 1 || true
209 status_of_proc -p /var/run/sshd.pid /usr/sbin/sshd sshd && exit 0 || exit $?
213 log_action_msg "Usage: /etc/init.d/ssh {start|stop|reload|force-reload|restart|try-restart|status}" || true