#! /bin/sh
#
# $Id: ssh-host-keygen,v 1.3 2008/11/03 09:16:01 djm Exp $
#
# This script is normally run only *once* for a given host
# (in a given period of time) -- on updates/upgrades/recovery
# the ssh_host_key* files _should_ be retained! Otherwise false
# "man-in-the-middle-attack" alerts will frighten unsuspecting
# clients...

keydir=@sysconfdir@
keygen=@sshkeygen@

if [ -f $keydir/ssh_host_key -o \
	     -f $keydir/ssh_host_key.pub ]; then
  echo "You already have an SSH1 RSA host key in $keydir/ssh_host_key."
else
  echo "Generating SSH1 RSA host key."
  $keygen -t rsa1 -f $keydir/ssh_host_key -C '' -N ''
fi

if [ -f $keydir/ssh_host_rsa_key -o \
	     -f $keydir/ssh_host_rsa_key.pub ]; then
  echo "You already have an SSH2 RSA host key in $keydir/ssh_host_rsa_key."
else
  echo "Generating SSH2 RSA host key."
  $keygen -t rsa -f $keydir/ssh_host_rsa_key -C '' -N ''
fi

if [ -f $keydir/ssh_host_dsa_key -o \
	     -f $keydir/ssh_host_dsa_key.pub ]; then
  echo "You already have an SSH2 DSA host key in $keydir/ssh_host_dsa_key."
else
  echo "Generating SSH2 DSA host key."
  $keygen -t dsa -f $keydir/ssh_host_dsa_key -C '' -N ''
fi