How do you guys quickly sync your settings (especially bash aliases and ssh keys) across your machines?
Ideally i want a simple script to run on every new server I work with. Any suggestions?
Dotfiles go in git, SSH keys are state.
I'm looking to migrate to home-manager though because I use Nix on all my devices anyways.
I also have multiple versions of by bash_profile with syntax specific to the OS. It checks if we're on MacOS or Linux with a kernel check and then reads the appropriate ancillary bash_profile for that platform. Anything that can live in the main bash_profile with the same command on both platforms lives there and anything that needs to be system-specific is in the other one.
I have all my important functions as individual files that get loaded with the following:
function loadfuncs() { local funcdir="$HOME/.dotfiles/functions/" [ -e "${funcdir}".DS_Store ] && rm "$HOME/.dotfiles/functions/.DS_Store" local n=0 for i in "${funcdir}"*; do source "$(realpath $i)" n=$(( n + 1 )) done } loadfuncsInteresting way to go about it. Though when I'm at the point where I need differences between linux and darwin, I'm probably going to do that at the home-manager level.
Just for fun, here's how I'm checking that (this was written in 2016 and may require adjusting as I haven't been keeping up on Linux for a while):
function oscheck() { if [[ "$(uname -s)" == 'Darwin' ]]; then # echo Darwin osType=Darwin return 0 elif [[ "$(uname -s)" == 'Linux' ]]; then # echo Linux osType=Linux grep CentOS /etc/os-release > /dev/null if [[ "$?" == 0 ]]; then # echo "CentOS" export theDistro=CentOS return 0 else : fi grep Ubuntu /etc/os-release > /dev/null if [[ "$?" == 0 ]]; then export theDistro=Ubuntu return 0 else : # echo "Not Ubuntu" fi printf " %s\n" "Error: osType tested true for Linux, but did not find CentOS or Ubuntu." "" return 1 else osType=Unknown return 1 fi } oscheckChecking for Ubuntu or CentOS is a tad limiting given the amount of distros there are ;)
Yeah, but those were the two I was using. I didn't mean to suggest that the code, as is, was correct for everyone. ;-)
I'm surprised no one mentioned ansible yet. It's meant for this (and more).
By ssh keys I assume you're talking about authorized_keys, not private keys. I agree with other posters that private keys should not be synced, just generate new ones and add them to the relevant servers authorized_keys with ansible.
+1 this, it is amazing. The scripting features are the cherry on top.
I love this solution, I've been using it for years. I had previously just been using the home directory is a git repo approach, and it never quite felt natural to me and came with quite a few annoyances. Adding stow to the mix was exactly what I needed.
ssh keys go into my keepass db, keepassxc imports them into gpg agent or ssh agent. Bash aliases and so on are in my dotfiles
I use a git repo combined with the basic install utility. Clone the repo, run the app installer, then run the install script. For symlinks I just use a zsh script.
I keep my dotfiles in a got repo and just do a
git pullyour update them. That could definitely be a cron job if you needed.SSH keys are a little trickier. I’d like to tell you I have a unique key for each of my desktop machines since that would be best practice, but that’s not the case. Instead I have a Syncthing shared folder. When I get around to cleaning that up, I’ll probably do just that and keep an
authorize_keysandknown_hostsfile in git so I can pull them to needed hosts and a cron job to keep them updated.Use a git repo and
stowtool. For updating, you only need rungit pull(andstowif you create config for a new software). If you modify some config, just git add && git commit && git push.
With this way, you can also record change history of your config.
