Auth collector from either systemd logger or fallback /var/log/secure
(old Amazon V1).
Use this as primary last login source in check last login script
Logging of all output to log/ folder for check last login script user.
Also for delete, user script now outputs move from ssh allow to ssh
reject group.
A new last logged in, last created script has been added to check which
users we have to disable.
- checks in group sshallow
- if last login older than 60days, remove account from ssh group
- if we have account create date, check if never logged in and older
than 30 days, remove account from ssh group
Both dates can be set separate
Update create script to add create date in Y-m-d (%F) format as
comment to the passwd file
Also add user to sshallow group (group always exists, is created on
server creation)
-t test will NOT create an ssh key anymore. The user password list file
gets a .TEST extension
-i info is a new option to just show user/group and ssh key name without
creating anything at all.
Can be used to update old public key names to new format
Has now -t option to turn test on off via command line.
If test is on no user or groups are created, only SSH keys and the zip
file.
Standard ssh key type is now ed25519 and the password gets set with -a
100 flag.
After creation all data is ziped into the zip/ folder for download and
all PEM/PUB/password files are deleted from the folder.
The old user_zip.sh file has been removed because of this.
The script now checks for zip program and zip/ folder existing.
Also base folder must be 600 and root set
The user list file has an update for host name override after the
password file.
If this is set then the server hostname will not be used for file names.
The file name is also back to include the host name but the type changed
to have "#" as separator (can be changed in file) and also ads the ssh
key type to the file
