Subversion Repositories

?revision_form?Rev ?revision_input??revision_submit??revision_endform?

Rev 2 | Rev 29 | Go to most recent revision | Blame | Compare with Previous | Last modification | View Log | RSS feed

#!/bin/sh
#
# lsh-utils     Start/stop secure shell server.
#               Written by Timshel Knoll <timshel@debian.org>
#               Updated by Stefan Pfetzing <dreamind@dreamind.de>
#

### BEGIN INIT INFO
# Provides:          sshd
# Required-Start:    $local_fs $remote_fs $syslog $named $network
# Required-Stop:     $local_fs $remote_fs $syslog $named $network
# Default-Start:     2 3 4 5
# Default-Stop:      0 1 6
# Short-Description: lsh secure shell server
### END INIT INFO

PATH=/sbin:/bin:/usr/sbin:/usr/bin
DAEMON=/usr/sbin/lshd
NAME=lshd
DESC="secure shell v2 server"
CONFIG=/etc/default/lsh-server

RANDOM_SEED="/var/spool/lsh/yarrow-seed-file"
HOST_KEY="/etc/lsh_host_key"

test -f $DAEMON || exit 0

set -e

if [ -r "$CONFIG" ]; then
   . "$CONFIG"
fi

if [ x"$LSHD_PORT" = x ]; then
   LSHD_PORT="22"
fi

case "$ENABLE_SFTP" in
  true|y*|Y*)
    SFTP_FLAG="--subsystems sftp=/usr/sbin/sftp-server.lsh"
    ;;
  *)
    SFTP_FLAG=""
    ;;
esac

if [ "$1" != "stop" -a "$1" != "graceful-stop" ]; then
   if [ ! -f "$RANDOM_SEED" ]; then
      echo -n "Creating lsh random seed file (this only needs to be done once): $RANDOM_SEED"
      DIR=$(dirname "$RANDOM_SEED")
      mkdir -p "$DIR"
      chmod 700 "$DIR"
      dd if=/dev/random "of=$RANDOM_SEED" bs=1 count=32 2>/dev/null
      chmod 600 "$RANDOM_SEED"
      echo "."
   fi

   if [ ! -f "$HOST_KEY" ]; then
      echo -n "Creating lsh host key (this only needs to be done once): $HOST_KEY"
      lsh-keygen --server | \
         lsh-writekey --server --output-file "$HOST_KEY"

      if [ ! -f "$HOST_KEY" ]; then
         echo " failed! not starting lshd"
         exit 0
      fi
     
      echo "."
   fi
fi

case "$1" in
  start)
        echo -n "Starting $DESC: $NAME"
        start-stop-daemon --start --quiet --pidfile /var/run/$NAME.pid \
                --background --make-pidfile --exec $DAEMON -- \
                --port "$LSHD_PORT" $SFTP_FLAG
        echo "."
        ;;
  stop|graceful-stop)
        echo -n "Gracefully stopping $DESC: $NAME"
        # Signal 1 causes the "old" lsh to close up shop on its port, but
        # keeps running until all active connections have been closed
        start-stop-daemon --stop --signal 1 --quiet --pidfile \
                 /var/run/$NAME.pid --oknodo --exec $DAEMON
        # Remove the old pid file, the server will exit when ready
        rm -f /var/run/$NAME.pid
        echo "."
        ;;
  #reload)
        # Signal 1 causes the "old" lsh to close up shop on its port, but
        # keeps running until all active connections have been closed
        #echo -n "Reloading $DESC configuration files."
        #start-stop-daemon --stop --signal 1 --quiet --pidfile \
        #       /var/run/$NAME.pid --exec $DAEMON
        #;;
  restart|force-reload)
        #
        #       If the "reload" option is implemented, move the "force-reload"
        #       option to the "reload" entry above. If not, "force-reload" is
        #       just the same as "restart".
        #
        echo -n "Restarting $DESC: $NAME"
        start-stop-daemon --stop --signal 1 --quiet --pidfile \
                /var/run/$NAME.pid --oknodo --exec $DAEMON
        # Remove the old pid file, the old server will exit when ready
        rm -f /var/run/$NAME.pid
        sleep 1
        start-stop-daemon --start --quiet --pidfile /var/run/$NAME.pid \
                --background --make-pidfile --exec $DAEMON -- \
                --port "$LSHD_PORT" $SFTP_FLAG
        echo "."
        ;;
  *)
        echo "Usage: /etc/init.d/lsh-utils {start|stop|restart|force-reload}" >&2
        exit 1
        ;;
esac

exit 0