HP-UX Containers (SRP) A.03.01 Administrator's Guide
99
Service Description
• Uses the SSH ssh-keygen utility to generate an RSA key pair to use for the
sshd host key pair. These keys are stored in the container-specific sshd data
path directory (/var/hpsrp/container_name/opt/ssh) with the
following names:
o ssh_host_rsa_key
(RSA private key)
o
ssh_host_rsa_key.pub
(RSA public key)
• Creates a container-specific copy of the sshd configuration file by copying
the sshd_config file from the specified data_src directory to the to the
data_path directory and modifying it with container-specific data, including
setting the HostKey parameter to
/var/hpsrp/container_name/opt/ssh/ssh_host_rsa_key.
• Creates container-specific initialization scripts and startup file to start the sshd
with the container-specific sshd_config file when the container startup script
is executed. The setup script:
o Creates the container-specific startup configuration file,
/var/hpsrp/container_name/etc/rc.config.d/sshd, which
specifies the container-specific sshd configuration file as a startup
argument for sshd.
o Adds the startup and shutdown script secsh to the container-specific
init.d directory, /var/hpsrp/container_name/sbin/init.d.
This file is linked to the
/var/hpsrp/container_name/sbin/rc2.d/S393secsh and
/var/hpsrp/container_name/sbin/rc1.d/K393sech files.
Note on Completing the Configuration
Tasks you might need to perform to complete the configuration include the following:
• Editing the container sshd_config file (the default location is
/var/hpsrp/container_name/opt/ssh/sshd_config).
If a client has the StrictHostKeyChecking directive set to yes, you must add the
host public key file (ssh_host_dsa_key.pub or ssh_host_rsa_key.pub) to the
client configuration, as described in the HP-UX Secure Shell documentation.
Table 16.5 Variables for the sshd template
Service Variable Variable Description
cmpt
data_path
Specifies the container-specific target directory for sshd
configuration and key files.
Default:
/var/hpsrp/
container_name
/opt/ssh
.
exec_path
The location of the executables for the HP-UX Secure Shell
product.
Default:
/opt/ssh
.