ssh: T1076: make configuration volatile

Move sshd_config file to /run so it must be generated on every boot and is not stored accidently.
author: Christian Poessinger <christian@poessinger.com> 2020-08-03 18:38:55 +0200
committer: Christian Poessinger <christian@poessinger.com> 2020-08-03 18:40:06 +0200
commit: ca2ab503f42a8446175954e9e7280ecc8e75e927 (patch)
tree: ea9a118982f310815b9d690ec80d238056bd072c /data/templates/ssh
parent: 6539f908e17c17a4a931e9638af9487e341bdcae (diff)
download: vyos-1x-ca2ab503f42a8446175954e9e7280ecc8e75e927.tar.gz
vyos-1x-ca2ab503f42a8446175954e9e7280ecc8e75e927.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/data/templates/ssh/override.conf.tmpl b/data/templates/ssh/override.conf.tmpl
index 4276366ae..843aa927b 100644
--- a/data/templates/ssh/override.conf.tmpl
+++ b/data/templates/ssh/override.conf.tmpl
@@ -2,9 +2,10 @@
 [Unit]
 StartLimitIntervalSec=0
 After=vyos-router.service
+ConditionPathExists={{config_file}}
 
 [Service]
 ExecStart=
-ExecStart={{vrf_command}}/usr/sbin/sshd -D $SSHD_OPTS
+ExecStart={{vrf_command}}/usr/sbin/sshd -f {{config_file}} -D $SSHD_OPTS
 RestartSec=10
author	Christian Poessinger <christian@poessinger.com>	2020-08-03 18:38:55 +0200
committer	Christian Poessinger <christian@poessinger.com>	2020-08-03 18:40:06 +0200
commit	ca2ab503f42a8446175954e9e7280ecc8e75e927 (patch)
tree	ea9a118982f310815b9d690ec80d238056bd072c /data/templates/ssh
parent	6539f908e17c17a4a931e9638af9487e341bdcae (diff)
download	vyos-1x-ca2ab503f42a8446175954e9e7280ecc8e75e927.tar.gz vyos-1x-ca2ab503f42a8446175954e9e7280ecc8e75e927.zip