From e5d68bdf0d8e73160bbb270eb730b0f5ea441803 Mon Sep 17 00:00:00 2001
From: Shulhan <ms@kilabit.info>
Date: Fri, 1 Jul 2022 00:09:12 +0700
Subject: all: use drop-ins replacement for configuring ssh server

Using this method give more flexibility to user that need to build
image with custom SSH server configuration.
---
 build-arch-gce | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

(limited to 'build-arch-gce')

diff --git a/build-arch-gce b/build-arch-gce
index 81b938a..a1db33c 100755
--- a/build-arch-gce
+++ b/build-arch-gce
@@ -110,6 +110,10 @@ echo '-- Configuring journald.'
 mkdir -p $mount_dir/etc/systemd/journald.conf.d
 cp ./sys/etc/systemd/journald.conf.d/00-google.conf $mount_dir/etc/systemd/journald.conf.d/
 
+## Disable password authentication and root login on SSH server.
+echo '-- Configuring ssh.'
+cp ./sys/etc/ssh/sshd_config $mount_dir/etc/ssh/
+
 arch-chroot -- "$mount_dir" /bin/bash -s <<-'EOS'
 	set -eEuo pipefail
 	trap 'echo "Error: \`$BASH_COMMAND\` exited with status $?"' ERR
@@ -121,11 +125,7 @@ arch-chroot -- "$mount_dir" /bin/bash -s <<-'EOS'
 	echo '-- Running locale-gen.'
 	locale-gen
 
-	echo '-- Configuring ssh.'
-	gawk -i assert -i inplace '
-		/^#PasswordAuthentication / { $0 = "PasswordAuthentication no"; ++f1 }
-		/^#PermitRootLogin / { $0 = "PermitRootLogin no"; ++f2 }
-		{ print } END { assert(f1 * f2 == 1, "f == 1") }' /etc/ssh/sshd_config
+	echo '-- Enabling sshd service.'
 	systemctl --quiet enable sshd.service
 
 	echo '-- Configuring pacman.'
-- 
cgit v1.3