Scramble root and alpine passwords

author: Mike Crute <mike@crute.us> 2018-01-28 04:52:01 +0000
committer: Mike Crute <mike@crute.us> 2018-01-28 04:52:01 +0000
commit: fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8 (patch)
tree: e6595b758116844aa5a15d9d87579f8888029e78
parent: 20513b6595ff1ae1bf0be4d899bfc83806b5f5d4 (diff)
download: tiny-ec2-bootstrap-fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8.tar.bz2
tiny-ec2-bootstrap-fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8.tar.xz
tiny-ec2-bootstrap-fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/tiny-ec2-bootstrap b/tiny-ec2-bootstrap
index 510f4f7..b0e3ca0 100644
--- a/tiny-ec2-bootstrap
+++ b/tiny-ec2-bootstrap
@@ -52,12 +52,18 @@ _run_userdata() {
    fi
 }
+_scramble_password() {
+    echo "$1:$(head -c 100 /dev/urandom | sha512sum | cut -d' ' -f1)" | chpasswd
+}
 start() {
    # Don't bootstrap if the host has already been bootstrapped
    [ -f "/var/lib/cloud/.bootstrap-complete" ] && return 0
    [ -d "/var/lib/cloud" ] || mkdir -p /var/lib/cloud
+    ebegin "Scrambling root password"; _scramble_password root; eend $?
+    ebegin "Scrambling alpine password"; _scramble_password alpine; eend $?
    ebegin "Setting ec2 hostname"; _update_hostname; eend $?
    ebegin "Setting ec2 user ssh keys"; _set_ssh_keys "alpine"; eend $?
    ebegin "Running ec2 user data script"; _run_userdata; eend $?
author	Mike Crute <mike@crute.us>	2018-01-28 04:52:01 +0000
committer	Mike Crute <mike@crute.us>	2018-01-28 04:52:01 +0000
commit	fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8 (patch)
tree	e6595b758116844aa5a15d9d87579f8888029e78
parent	20513b6595ff1ae1bf0be4d899bfc83806b5f5d4 (diff)
download	tiny-ec2-bootstrap-fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8.tar.bz2 tiny-ec2-bootstrap-fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8.tar.xz tiny-ec2-bootstrap-fe26bc91ff84f86cca6aa8e1c0940ff45c8181b8.zip