maska/letsencrypt-routeros
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Use RSA keys for SSH rather than DSA

Browse Source
This commit is contained in:
danb35 2019-04-12 17:21:14 -04:00 committed by GitHub
parent ba52d0c817
commit e2c95fa8a7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
README.md
View File

@ -43,18 +43,18 @@ Change permissions:
```sh ```sh
chmod +x /opt/letsencrypt-routeros/letsencrypt-routeros.sh chmod +x /opt/letsencrypt-routeros/letsencrypt-routeros.sh
``` ```
Generate DSA Key for RouterOS Generate RSA Key for RouterOS
*Make sure to leave the passphrase blank (-N "")* *Make sure to leave the passphrase blank (-N "")*
```sh ```sh
ssh-keygen -t dsa -f /opt/letsencrypt-routeros/id_dsa -N "" ssh-keygen -t rsa -f /opt/letsencrypt-routeros/id_rsa -N ""
``` ```
Send Generated DSA Key to RouterOS / Mikrotik Send Generated RSA Key to RouterOS / Mikrotik
```sh ```sh
source /opt/letsencrypt-routeros/letsencrypt-routeros.settings source /opt/letsencrypt-routeros/letsencrypt-routeros.settings
scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_dsa.pub "$ROUTEROS_USER"@"$ROUTEROS_HOST":"id_dsa.pub" scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_rsa.pub "$ROUTEROS_USER"@"$ROUTEROS_HOST":"id_rsa.pub"
``` ```
### Setup RouterOS / Mikrotik side ### Setup RouterOS / Mikrotik side
@ -67,8 +67,8 @@ scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_dsa.pub "$ROUTEROS_USER"@
:put "Enable SSH" :put "Enable SSH"
/ip service enable ssh /ip service enable ssh
:put "Add to the user DSA Public Key" :put "Add to the user RSA Public Key"
/user ssh-keys import user=admin public-key-file=id_dsa.pub /user ssh-keys import user=admin public-key-file=id_rsa.pub
``` ```
### CertBot Let's Encrypt ### CertBot Let's Encrypt