ssh: Finally found a way to securely add ssh_config

This will not expose any users to the wider world.

diff --git a/Makefile b/Makefile
index 855a5c512e1da0e47867525805ee42dae3e6b360..14777710e2efc416a2364963ad2658efe6bebf2f 100644 (file)
--- a/Makefile
+++ b/Makefile
@@ -27,6 +27,7 @@ dircolors: $(XDG_CONFIG_HOME)
 
 gdb:
        mkdir $(XDG_DATA_HOME)/gdb
+       ln -sfT $(APATH)/gdb $(XDG_CONFIG_HOME)/gdb
        ln -sfT $(APATH)/gdbinit ~/.gdbinit
        ln -sfT $(APATH)/cgdb ~/.cgdb
 .PHONY: gdb
@@ -63,6 +64,10 @@ qutebrowser: $(XDG_CONFIG_HOME)
        mkdir -p ~/downloads
 .PHONY: qutebrowser
 
+ssh:
+       ln -sfT $(APATH)/ssh/config ~/.ssh/config
+.PHONY: ssh
+
 systemd: $(XDG_CONFIG_HOME)
        ln -sfT $(APATH)/$@ $(XDG_CONFIG_HOME)/$@
 .PHONY: systemd

diff --git a/ssh/config b/ssh/config
new file mode 100644 (file)
index 0000000..d159ed2
--- /dev/null
+++ b/ssh/config
@@ -0,0 +1,51 @@
+Include private-config
+
+Host rmz.io
+ForwardAgent yes
+
+Host deepthought
+ForwardAgent yes
+
+Host uh-nuc01
+HostName localhost
+Port 22222
+ForwardAgent yes
+ProxyJump rmz.io
+
+Host tardis tardis.uni.cx tardis.rmz.io
+HostName tardis.rmz.io
+ForwardAgent yes
+StreamLocalBindUnlink yes
+
+Host kelmis
+HostName kelmis.uni.cx
+Port 5555
+DynamicForward 1080
+IdentityFile ~/.ssh/old/id_rsa
+
+Host chronos
+IdentityFile ~/.ssh/old/id_rsa
+
+Host buildserver
+Port 5555
+HostName dezponia.se
+# RemoteForward /home/ramsi/.config/gnupg/S.gpg-agent /home/ramsi/.config/gnupg/S.gpg-agent
+# ExitOnForwardFailure yes
+
+Host bulbasaur bulbasaur.chakralinux.org
+HostName bulbasaur.chakralinux.org
+
+Host rsync.chakralinux.org
+HostName rsync.chakralinux.org
+IdentityFile ~/.ssh/old/id_rsa
+
+Host chakra-sf
+HostName frs.sourceforge.net
+IdentityFile ~/.ssh/old/id_rsa_github
+
+Host *
+ControlMaster auto
+ControlPersist 1h
+ServerAliveInterval 30
+ServerAliveCountMax 4
+AddKeysToAgent yes