adduser --disabled-password --gecos "" me
my_password=$(openssl rand -hex 16)
printf "$my_password"'\n'"$my_password" | passwd me
+
+ # make 'me' a sudo-er (admin)
adduser me sudo
echo "me ALL=(ALL:ALL) NOPASSWD: ALL" | tee /etc/sudoers.d/me
- sudo -i -u me bash -c 'ssh-keygen -b 2048 -t rsa -f /home/me/.ssh/id_rsa -q -N ""'
+
+ # allow users who can already login as 'root' to login as 'me'
mkdir -p /home/me/.ssh/
chmod 0700 /home/me/.ssh/
cp -r "$HOME/.ssh/authorized_keys" /home/me/.ssh/
chmod 0600 /home/me/.ssh/authorized_keys
chown -R me:me /home/me/.ssh/
- # Install webi for the new user
+ # ensure that 'me' has an SSH Keypair
+ sudo -i -u me bash -c 'ssh-keygen -b 2048 -t rsa -f /home/me/.ssh/id_rsa -q -N ""'
+
+ # Install webi for the new 'me' user
sudo -i -u me bash -c 'curl -fsSL https://webinstall.dev/webi | bash' \
|| sudo -i -u me bash -c 'wget -q -O - https://webinstall.dev/webi | bash'