From 353a8302eba58d84c0406ce5e0b461c60c700d57 Mon Sep 17 00:00:00 2001
From: immarvin <yangsbj@cn.ibm.com>
Date: Tue, 28 Mar 2017 00:45:47 -0400
Subject: [PATCH] fix issue [DEV] "remoteshell" postscript complains "chown:
 invalid group: root:ssh_keys" and "Permissions 0640 for
 /etc/ssh/ssh_host_dsa_key are too open" on sles11.4

---
 xCAT/postscripts/remoteshell | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/xCAT/postscripts/remoteshell b/xCAT/postscripts/remoteshell
index 45c15a1a3..5e5805b52 100755
--- a/xCAT/postscripts/remoteshell
+++ b/xCAT/postscripts/remoteshell
@@ -11,6 +11,7 @@
 #      id.rsa
 #
 # if on the Management Node, exit
+umask 0077
 if [ -f /etc/os-release ] && cat /etc/os-release |grep -i -e "^NAME=[ \"']*Cumulus Linux[ \"']*$" >/dev/null 2>&1 ; then
    #TODO
    echo "Cumulus OS is not supported yet, nothing to do..."
@@ -314,7 +315,7 @@ if [[ $NTYPE = service ]]; then
    cp /etc/ssh/ssh* /etc/xcat/hostkeys/.
 fi
 
-umask 0077 
+
 # This is where we start getting root ssh keys
 # This tells credentials.pm where to get the root .ssh keys.  If no zone then old path of ~.ssh
 #rootsshpvtkey=ssh_root_key:$zonename