LTSP: Support providing SSH access to diskless clients.

2 files changed, 5 insertions, 1 deletions

diff --git a/etc/ltsp/image-local.omit-excludes b/etc/ltsp/image-local.omit-excludes
new file mode 100644
index 0000000..18d36b8
--- /dev/null
+++ b/etc/ltsp/image-local.omit-excludes
@@ -0,0 +1,2 @@
+root/.*
+etc/ssh/ssh_host_*
diff --git a/etc/ltsp/ltsp.conf.itzks-systems-disklserver.in b/etc/ltsp/ltsp.conf.itzks-systems-disklserver.in
index 900d975..e6cc553 100644
--- a/etc/ltsp/ltsp.conf.itzks-systems-disklserver.in
+++ b/etc/ltsp/ltsp.conf.itzks-systems-disklserver.in
@@ -43,7 +43,7 @@ SEARCH_DOMAIN=intern
 KERNEL_PARAMETERS="quiet splash"
 
 ADD_IMAGE_EXCLUDES="/etc/ltsp/image-local.excludes"
-OMIT_IMAGE_EXCLUDES="root/.*"
+OMIT_IMAGE_EXCLUDES="/etc/ltsp/image-local.omit-excludes"
 
 [clients]
 
@@ -55,6 +55,8 @@ LIGHTDM_CONF="greeter-hide-users=true"
 POST_INIT_USE_FQDN="sed -i '/10.0.2.2/ s/server/tjener.intern tjener/' /etc/hosts"
 POST_INIT_SITESUMMARY="sed -i 's/main-server/ltsp-client/' /etc/sitesummary/hostclass"
 MASK_SYSTEM_SERVICES="apache2 etckeeper icinga2 nmbd smbd systemd-journald isc-dhcp-server"
+# uncomment this to enable SSH access to LTSP clients
+#KEEP_SYSTEM_SERVICES="ssh"
 
 # Allow local root logins by setting a password hash for the root user.
 # The hash contains $, making it hard to escape in POST_INIT_x="sed ...".