dargslan-sshkey-audit 1.0.0__tar.gz

dargslan_sshkey_audit-1.0.0/LICENSE

@@ -0,0 +1,18 @@
+MIT License
+
+  Copyright (c) 2025 Dargslan (https://dargslan.com)
+
+  Permission is hereby granted, free of charge, to any person obtaining a copy
+  of this software and associated documentation files (the "Software"), to deal
+  in the Software without restriction, including without limitation the rights
+  to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+  copies of the Software, and to permit persons to whom the Software is
+  furnished to do so, subject to the following conditions:
+
+  The above copyright notice and this permission notice shall be included in all
+  copies or substantial portions of the Software.
+
+  THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+  IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+  FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+  

dargslan_sshkey_audit-1.0.0/PKG-INFO

@@ -0,0 +1,51 @@
+Metadata-Version: 2.4
+Name: dargslan-sshkey-audit
+Version: 1.0.0
+Summary: SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys
+Author-email: Dargslan <info@dargslan.com>
+License: MIT
+Project-URL: Homepage, https://dargslan.com
+Project-URL: Documentation, https://dargslan.com/blog
+Project-URL: Free Cheat Sheets, https://dargslan.com/cheat-sheets
+Project-URL: Linux & DevOps Books, https://dargslan.com/books
+Keywords: linux,ssh,key,audit,security,authorized-keys,sysadmin
+Classifier: Development Status :: 5 - Production/Stable
+Classifier: Intended Audience :: System Administrators
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: POSIX :: Linux
+Classifier: Programming Language :: Python :: 3
+Classifier: Topic :: System :: Systems Administration
+Requires-Python: >=3.7
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Dynamic: license-file
+
+# dargslan-sshkey-audit
+
+  SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys
+
+  Part of the [Dargslan Linux Toolkit](https://pypi.org/project/dargslan-toolkit/) — 100 CLI tools for Linux sysadmins.
+
+  ## Install
+
+  ```bash
+  pip install dargslan-sshkey-audit
+  ```
+
+  ## Usage
+
+  ```bash
+  dargslan-sshkey-audit
+  ```
+
+  ## More Resources
+
+  - [Linux eBooks](https://dargslan.com/books) — 210+ professional eBooks
+  - [Free Cheat Sheets](https://dargslan.com/cheat-sheets)
+  - [Blog](https://dargslan.com/blog)
+  - [dargslan-toolkit](https://pypi.org/project/dargslan-toolkit/) — Install all 100 tools at once
+
+  ## License
+
+  MIT — [Dargslan](https://dargslan.com)
+  

dargslan_sshkey_audit-1.0.0/README.md

@@ -0,0 +1,29 @@
+# dargslan-sshkey-audit
+
+  SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys
+
+  Part of the [Dargslan Linux Toolkit](https://pypi.org/project/dargslan-toolkit/) — 100 CLI tools for Linux sysadmins.
+
+  ## Install
+
+  ```bash
+  pip install dargslan-sshkey-audit
+  ```
+
+  ## Usage
+
+  ```bash
+  dargslan-sshkey-audit
+  ```
+
+  ## More Resources
+
+  - [Linux eBooks](https://dargslan.com/books) — 210+ professional eBooks
+  - [Free Cheat Sheets](https://dargslan.com/cheat-sheets)
+  - [Blog](https://dargslan.com/blog)
+  - [dargslan-toolkit](https://pypi.org/project/dargslan-toolkit/) — Install all 100 tools at once
+
+  ## License
+
+  MIT — [Dargslan](https://dargslan.com)
+  

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit/__init__.py

@@ -0,0 +1,5 @@
+"""dargslan-sshkey-audit — SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys
+  More tools: https://dargslan.com
+  """
+  __version__ = "1.0.0"
+  

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit/main.py

@@ -0,0 +1,59 @@
+import os, subprocess, sys, datetime
+
+  def get_ssh_keys():
+      keys = []
+      for user_dir in ['/root'] + [f'/home/{u}' for u in os.listdir('/home')] if os.path.isdir('/home') else ['/root']:
+          ak = os.path.join(user_dir, '.ssh', 'authorized_keys')
+          if os.path.isfile(ak):
+              try:
+                  with open(ak) as f:
+                      for line in f:
+                          line = line.strip()
+                          if line and not line.startswith('#'):
+                              keys.append({'user': os.path.basename(user_dir) if user_dir != '/root' else 'root', 'key': line, 'file': ak})
+              except PermissionError:
+                  keys.append({'user': os.path.basename(user_dir), 'key': '[permission denied]', 'file': ak})
+      return keys
+
+  def check_key_types(keys):
+      weak = []
+      for k in keys:
+          parts = k['key'].split()
+          if len(parts) >= 2:
+              ktype = parts[0]
+              if ktype in ('ssh-dss', 'ssh-dsa'):
+                  weak.append(f"  WEAK: {k['user']} uses DSA key (deprecated)")
+              elif ktype == 'ssh-rsa':
+                  weak.append(f"  INFO: {k['user']} uses RSA key (consider ed25519)")
+      return weak
+
+  def main():
+      print("=== SSH Key Audit ===")
+      print()
+      keys = get_ssh_keys()
+      if not keys:
+          print("No authorized_keys found")
+          return
+      print(f"Found {len(keys)} authorized key(s):")
+      for k in keys:
+          parts = k['key'].split()
+          ktype = parts[0] if parts else 'unknown'
+          comment = parts[-1] if len(parts) >= 3 else 'no-comment'
+          print(f"  User: {k['user']}  Type: {ktype}  Comment: {comment}")
+      print()
+      weak = check_key_types(keys)
+      if weak:
+          print("Key Analysis:")
+          for w in weak:
+              print(w)
+      else:
+          print("All keys use strong algorithms")
+      host_keys = [f for f in os.listdir('/etc/ssh') if f.startswith('ssh_host_') and f.endswith('.pub')] if os.path.isdir('/etc/ssh') else []
+      if host_keys:
+          print(f"\nHost keys: {len(host_keys)}")
+          for hk in host_keys:
+              print(f"  {hk}")
+
+  if __name__ == "__main__":
+      main()
+  

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit.egg-info/PKG-INFO

@@ -0,0 +1,51 @@
+Metadata-Version: 2.4
+Name: dargslan-sshkey-audit
+Version: 1.0.0
+Summary: SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys
+Author-email: Dargslan <info@dargslan.com>
+License: MIT
+Project-URL: Homepage, https://dargslan.com
+Project-URL: Documentation, https://dargslan.com/blog
+Project-URL: Free Cheat Sheets, https://dargslan.com/cheat-sheets
+Project-URL: Linux & DevOps Books, https://dargslan.com/books
+Keywords: linux,ssh,key,audit,security,authorized-keys,sysadmin
+Classifier: Development Status :: 5 - Production/Stable
+Classifier: Intended Audience :: System Administrators
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: POSIX :: Linux
+Classifier: Programming Language :: Python :: 3
+Classifier: Topic :: System :: Systems Administration
+Requires-Python: >=3.7
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Dynamic: license-file
+
+# dargslan-sshkey-audit
+
+  SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys
+
+  Part of the [Dargslan Linux Toolkit](https://pypi.org/project/dargslan-toolkit/) — 100 CLI tools for Linux sysadmins.
+
+  ## Install
+
+  ```bash
+  pip install dargslan-sshkey-audit
+  ```
+
+  ## Usage
+
+  ```bash
+  dargslan-sshkey-audit
+  ```
+
+  ## More Resources
+
+  - [Linux eBooks](https://dargslan.com/books) — 210+ professional eBooks
+  - [Free Cheat Sheets](https://dargslan.com/cheat-sheets)
+  - [Blog](https://dargslan.com/blog)
+  - [dargslan-toolkit](https://pypi.org/project/dargslan-toolkit/) — Install all 100 tools at once
+
+  ## License
+
+  MIT — [Dargslan](https://dargslan.com)
+  

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit.egg-info/SOURCES.txt

@@ -0,0 +1,10 @@
+LICENSE
+README.md
+pyproject.toml
+dargslan_sshkey_audit/__init__.py
+dargslan_sshkey_audit/main.py
+dargslan_sshkey_audit.egg-info/PKG-INFO
+dargslan_sshkey_audit.egg-info/SOURCES.txt
+dargslan_sshkey_audit.egg-info/dependency_links.txt
+dargslan_sshkey_audit.egg-info/entry_points.txt
+dargslan_sshkey_audit.egg-info/top_level.txt

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit.egg-info/entry_points.txt

@@ -0,0 +1,2 @@
+[console_scripts]
+dargslan-sshkey-audit = dargslan_sshkey_audit.main:main

dargslan_sshkey_audit-1.0.0/dargslan_sshkey_audit.egg-info/top_level.txt

@@ -0,0 +1 @@
+dargslan_sshkey_audit

dargslan_sshkey_audit-1.0.0/pyproject.toml

@@ -0,0 +1,31 @@
+[build-system]
+  requires = ["setuptools>=61.0", "wheel"]
+  build-backend = "setuptools.build_meta"
+
+  [project]
+  name = "dargslan-sshkey-audit"
+  version = "1.0.0"
+  description = "SSH key auditor — scan authorized_keys, detect weak keys, expiry, unused keys"
+  readme = "README.md"
+  license = {text = "MIT"}
+  requires-python = ">=3.7"
+  authors = [{name = "Dargslan", email = "info@dargslan.com"}]
+  keywords = ["linux", "ssh", "key", "audit", "security", "authorized-keys", "sysadmin"]
+  classifiers = [
+      "Development Status :: 5 - Production/Stable",
+      "Intended Audience :: System Administrators",
+      "License :: OSI Approved :: MIT License",
+      "Operating System :: POSIX :: Linux",
+      "Programming Language :: Python :: 3",
+      "Topic :: System :: Systems Administration",
+  ]
+
+  [project.urls]
+  Homepage = "https://dargslan.com"
+  Documentation = "https://dargslan.com/blog"
+  "Free Cheat Sheets" = "https://dargslan.com/cheat-sheets"
+  "Linux & DevOps Books" = "https://dargslan.com/books"
+
+  [project.scripts]
+  dargslan-sshkey-audit = "dargslan_sshkey_audit.main:main"
+  

dargslan_sshkey_audit-1.0.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+