Generating ~/.ssh/known_hosts from LDAP

To: debian-devel@lists.debian.org
Subject: Generating ~/.ssh/known_hosts from LDAP
From: Matt Zimmerman <mdz@debian.org>
Date: Sat, 13 Dec 2003 16:00:27 -0800
Message-id: <[🔎] 20031214000027.GA17102@alcor.net>
Mail-followup-to: debian-devel@lists.debian.org

I couldn't find any way to authenticate db.debian.org when using direct LDAP
(TLS doesn't seem to be supported), but nonetheless this is damn convenient.

(requires python-ldap)

-- 
 - mdz

#!/usr/bin/python

#
# debian-known-hosts
#
#   Dump ssh host keys from db.debian.org in a format suitable for an
#   ssh known_hosts file
#
# BUGS: has no way to authenticate db.debian.org
#
# Matt Zimmerman <mdz@debian.org>, 12/13/2003
#

import ldap

conn = ldap.ldapobject.SmartLDAPObject('ldap://db.debian.org')
msgid = conn.search('dc=debian,dc=org', ldap.SCOPE_SUBTREE,
                    filterstr='objectClass=debianServer',
                    attrlist=('hostname', 'sshRSAHostKey'))
restype, resdata = conn.result(msgid)

for dn, attrs in resdata:
    if 'sshRSAHostKey' not in attrs:
        continue
    hostnames = ','.join(attrs['hostname'])
    for hostkey in attrs['sshRSAHostKey']:
        print hostnames, hostkey

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: Generating ~/.ssh/known_hosts from LDAP
  - From: <allomber@math.u-bordeaux.fr>
- Re: Generating ~/.ssh/known_hosts from LDAP
  - From: Clint Adams <schizo@debian.org>

Prev by Date: Services I'd like from auric
Next by Date: Bug#223905: ITP: jamnntpd -- NNTP server that allows newsreaders to access a JAM messagebase
Previous by thread: Re: Services I'd like from auric
Next by thread: Re: Generating ~/.ssh/known_hosts from LDAP
Index(es):
- Date
- Thread