General :: Passwordless SSH To The Same Host?
Jun 12, 2011
I am trying to run OpenNebula on a set of 2 machines. One of the machines(called host1) must be able to access the others(including itself) with passwordless ssh.Both machines have the same user and use mounted folder from host1 for home directory(exported with NFS). So single key generation should be enough for this configuration - all the machines have access to the same .ssh folder.What I am getting at the end is passwordless ssh from host1 to host2 which is great, but no success from host1 to host1. Host2 to host2 is also OK, host2 to host1 wants password like host1 to host1.Both machines have the same sshd_config and ssh_config files.File permissions required by ssh should be correct since it works for host1 to host2.The only difference(I see) between the machines is that host1 runs nfs service, so host2 has access to the exported folders.
The ssh-keygen is executed on host1authorized_keys has the same public key two times(to authorize access for host1 on host1 and host2).The distro is Scientific Linux 6.0 aand I also use rsa.Something else - no pass ssh with another user from host1 to host1 works, so I suppose the problem comes from this mounted folder.
View 4 Replies
ADVERTISEMENT
Apr 27, 2011
I'm in my terminal and do git pull, git push alot in a work day. On the server I'm pulling and pushing I can't do password less ssh the usual way by generating rsa keys.Is it still possible perhaps for me to enter my password once for a session and do all the git pulls/pushes I want?
View 1 Replies
View Related
Aug 19, 2011
I'm working on some code from my computer at home and would like to do CVS updates to a remote server. When I'm at work I don't need to type in a password, but at home each time I need to type in my password each time I do a CVS update. I've followed the instructions here on how to set up a passwordless public/private ssh key pair: [URL].. However, after that I still need to type in my ssh password each time I do CVS update (or anything CVS related) from my local computer.
View 1 Replies
View Related
Jun 14, 2010
What's the easiest way to have a system script (running as root) execute remote commands over ssh? I've written some scripts that execute commands remotely via ssh, and they work great when I run them as myself, as I've set up ssh-agent and keys for passwordless login. I'd like to call these when my laptop docks and undocks. I've been successful at running arbitrary scripts when docking/undocking, but since the ACPI event scripts run as root, trying to run my ssh script fails during authentication.
I tried using sudo with the -u and -i flags to simulate running the script as my user, e.g.: sudo -u redmoskito -i /home/redmoskito/bin/remote_command which successfully finds my private key and tries to use it, but the ssh-agent credentials are still missing, so it still needs my passphrase.
View 2 Replies
View Related
Feb 12, 2010
I have been trying to establish a connection between two pcs via the ssh channel. I successfully made the connection as a root user, but when i tried as a non root user i had to type in the password the make contact with the other pc. how exactly does this passwordless login actually work?
View 3 Replies
View Related
Oct 20, 2010
I have two servers, one has an empty / and the other has a subdirectory with a large number (4 gig) with many, many files. I need a way to transfer the files en masse from the server with the large number of files to the one that is essentially blank.I don't have space on the used host to simply gzip all the files. I've googled this and see that there may be some combination of tar and/or gzip that will let me do this with some sort of redirection.
I really need and example line of how this can be accomplished. If my explanation seems rather sparse, I can supply more details.
View 3 Replies
View Related
Mar 9, 2011
I'm trying to ssh from my laptop to my desktop (both fedora 14) over a local network. I can ping my desktop and get responses, but if I ssh to it, I receive
ssh: connect to host 192.168.100.xxx port 22: No route to host
I can ssh from the desktop to itself.
View 4 Replies
View Related
Oct 20, 2010
HOW TO GET THE IP ADDRESS OF HOST IN LINUX WITH USING OF HOST AND NSLOOKUP COMMAND and after getting the ip address how to assign it in the variable
View 4 Replies
View Related
Aug 5, 2009
What do host.allow and host.deny do exactly? what are they??
View 3 Replies
View Related
Sep 2, 2010
How can I configure ssh to do the passwordless logins between the users in a Linux server?I am using RHEL4.6 version. I have created some users in this server and I would like to login from one user to the other users in the same server without a password prompt by using SSH. I was using rsh for this purpose before, but since it is against our security policy , I have to switch to SSH.I have done the ssh configuration by creating the keys and copying the public keys to the file .ssh/authorized_keys of the other users in the same server.But unfortunately still I am not able to login to other users in the same system WITHOUT a Password.I did the following settings.From user1:
mkdir ~/.ssh
chmod 755 ~/.ssh
/usr/bin/ssh-keygen -t rsa
[code]...
View 1 Replies
View Related
Aug 13, 2010
I can ssh with password ok but after doing the whole key generation procedure at [URL].. section 7, it still prompts for a password. Here is the output:
[root@apvdbs03 log]# ssh -v root@aapxen01
OpenSSH_4.3p2, OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Connecting to aapxen01 [10.0.1.20] port 22.
debug1: Connection established.
[Code]..
View 5 Replies
View Related
May 11, 2011
I have key-based authentication working for one user on a cluster--
Code:
user@thisnode > ssh user@othernode
last login blah blah blah..
user@othernode >
but if I switch to that user and try it, I get an error--
[Code]...
View 2 Replies
View Related
Feb 3, 2010
I followed the steps here: [URL]
It works fine, except every time I try to do something that requires authentication of the key, I have to type in the password in a prompt that looks like this:
Code:
$ git pull
Enter passphrase for key '/home/<user>/.ssh/id_rsa':
remote: Counting objects: 16, done.
remote: Compressing objects: 100% (9/9), done.
remote: Total 9 (delta 7), reused 0 (delta 0)
...
This is very annoying. How can I have it so I don't have to enter my password each time?
On my local machine I followed the same instructions and don't have to enter the password every time...
View 4 Replies
View Related
Feb 24, 2010
I have for a while been trying to setup ssh so hadoop can ssh without a password to all it's nodes. (Currenly 2 nodes)But i can not get the ssh to login without either asking for a password or just getting access denied (public key)I have been following two guidesFirst:Setting up SingleNode ClusterThen after:Setting up Multinode ClusterI have also done various ssh tutorials on setting up ssh.I got to the point where i do the command bin/start-dfs.shThen it begins asking for passwords. Which it should'nt.The problem is that ssh is not setup correcly.And whatever i try i get problems with logging in.the computers are called.
hadoop1.utoft.be (Namenode and JobTracker)
hadoop2.utoft.be
hadoop3.utoft.be
[code]....
View 2 Replies
View Related
Feb 9, 2011
I am running Ubuntu 10.04 (OpenSSH_5.3p1 Debian-3ubuntu3, OpenSSL 0.9.8k 25 Mar 2009) I am trying to setup passwordless ssh/scp for some servers on a LAN I am running the following commands:
Code:
ssh-keygen
ssh-copy-id user@<ipaddress>
ssh-add
I added the last step as the following error prevented logins:
Code:
agent admitted to failure to sign using the key After running ssh-add, i still get the error(agent admitted to failure to sign using the key) but passwordless ssh/scp works. The following is the output of user@localmachine:~$ ssh -vvv remote@10.0.7.112
[Code]...
View 1 Replies
View Related
Feb 18, 2011
I want use two computer to run OpenFOAM or Fluent software.These two computers are connected via a cross cable. I have access to another by "ssh maysam@192.168.1.1" OR "ssh 192.168.1.1" The problem is i should have access to another PC by "ssh maysam-desktop" command which can run parallel. maysam-desktop is name of anothe PC and maysam is name of its user.
View 1 Replies
View Related
Aug 18, 2011
There are a few threads about this but none seem to me.I have 3 machines setup with a nfs home directory on machine 1.I have created keys using ssh-keygen -t rsa (and left everything blank), then as user on machine 1 run
Code:
cat id_rsa.pub >> authorized_keys2
chmod 644 ~/.ssh/*
this used to work until I upgraded to ubuntu 11.04 (from 9.04), and now it requires a password to ssh. I have tried several times deleting ~/.ssh/* and recreating, to no luck Below is the results when I try to ssh into -2 from -1:
[Code]...
(dumb question, but shouldn't the offered RSA public key be id_rsa.pub rather than id_rsa?)
View 5 Replies
View Related
Jul 29, 2011
I have two load balancing boxes... One primary (box1) and one backup/failover (box2). I want to make sure the heartbeat is running on both boxes via a script. While I'm on box1, I want to run as any user: ssh box2 service pulse status and not have box2 ask for a password.
View 1 Replies
View Related
Jul 10, 2010
I have 3 servers with Oracle 10g installed. In order for rsync to work for log shipping I need to have passwordless SSH configured.*Note: I did not configure these servers, 2 DBA's got canned and I'm left to fix this and I am not a DBA.I have done passwordless SSH in the past and it is easy.Here is my problem: (-> = passwordless ssh works)ServerA -> ServerCServerB -> ServerCBut I need all 3 to be able to do passwordless SSH to each other.I deleted all the files in /home/oracle/.ssh on all 3 servers and this is what I did for all 3 servers:
ssh-keygen -t rsa
ssh-keygen -t dsa
cat id_rsa.pub >> authorized_keys
[code]....
View 13 Replies
View Related
Jun 14, 2011
I am trying to set up passworldess login - I am trying to automate ssh to use send commands from a Red Hat el5.2 server to a solaris 9 server (I did get it working from solaris 10-9).I have ran ssh-keygen -t rsa and then the ssh-copy-id and i can login passwordless via ssh. N HURRAH
Unfortunately when I use my scripts to automate the commands I ALWAYS receive an "Error Code - 255" - the command is successfully sent.
View 3 Replies
View Related
Mar 29, 2010
I have to establish password SFTP between one Unix box and Windows in which certain files will be pushed from unix to windows server. Our client is insisting on using TurboFTP on Windows for ssh daemon to run. There are two components in TurboFTO- client and server.
1. I need help if I need to install both. As far as my knowledge with this software is considered, I dont think TurboFTP client to be running as the server componoent will itself run sshd.
2. Also, when I try to add server in TurboFTP server console, it provides me two options - local and remote server types. Local uses 3830 port by default and uses ip 127.0.0.1. If I use Remote server type which uses 3839 and I dont know what ip address to provide. I need help whether I shud go ahead with local server or remote server.
My doubt is if I consider local server type then whether my Unix box will be able to recognize if thie windows machine (which is also naving network specific ip address) has sshd running because windows has local server type enabled which uses 127.0.0.1.
View 3 Replies
View Related
Sep 8, 2010
I can't get this to work on my machines.
So far I have:
1. created a key with ssh-keygen on the server to be logged in to
2. copied the .pub key to my local machine
3. chmod 700 ~/.ssh on both machines
4. chomd 600 ~/.ssh/ic_rsa on the server, and on known_hosts on my local machine
5. added the .pub key to ~/known_hosts on my local machine
my local machine doesn't have an "authorized_keys" file which is what everything is telling me I should append my .pub key to. The only thing that was in my .ssh folder was known_hosts, so I tried that. I also tried making an authorized_hosts file to no avail, changing permissions appropriatly on all files.
Should I/Can I reset ssh in some way? Is there are reason I don't have an authorized_keys file or is my known_hosts file my authorized_keys file?
Would it be better just to uninstall/reinstall ssh?
View 2 Replies
View Related
May 14, 2009
I was asked to list passwordless or locked accounts in a fedora system. As far as I know, fedora or RH dont allow passwordless accounts (the system locks the account Edit: ... unless you set passwd -d :-P ), so I might show info about locked accounts.
I am totally aware that I could do a grep or an awk searching for "!!" or "", but my people is asking me to check against passwd -S (which prints info of accounts). The thing, is that in Solaris you can check with passwd -a -s all the users, but in Linux I couldnt find anything similar. what approach do you reccomend for passing, say , the list of users ( like the output of awk searching only user names) to the command passwd -S one by one?
View 4 Replies
View Related
Jan 27, 2011
we are running a small cluster (CentOS 5.5) for research in fluid dynamics, using OpenFOAM and Fluent togehter with Sun Grid Engine. For these programs, ssh without password prompt in console is required. So far, I did the method described here: [URL]... with keys distributed at each node. However, imagine a new users needs to be created:
1. Creating user at every node.
2. Create key at every node
3. Distribute key to every node
Makes password prompt threetimes, for 50 nodes - quite a lot. The students dont like that really much, me neither. What I am asking for is any help to make this more comfortable. I am not really a system admin, but more a researcher with some knowledge in admin tasks. Actually, I would like to use a ldap authetication, were passwords are stored centrally. When the user first logs in to a machine, the home directory should be created. I think I can manage it to work.
[Code]...
View 7 Replies
View Related
Oct 6, 2010
I'm trying to configure a process triggered by an SVN post-commit hook which will log into a different host and carry out an SVN update on a file path on that host before exiting. An earlier attempt mounted the remote filepath on the SVN host using sshfs and performed the update locally. This worked but it was incredibly slow (minutes to complete an SVN update).
So, Plan B was to set-up a passwordless login for the user the script runs as and then use pam-script to script a checkout from a repository using the same credentials. The problem is, passwordless SSH login using private/public keys appears to bypass the PAM authentication system or at least interact with it in a way that no environment variables (including the SSH user's name and pass) are resolved by the authentication script being used by pam-script.
I've tested the pam-script behaviour for normal log-ins and it exposes these variables fine. This leaves me in a Catch-22 with trying to script access on one host to perform actions on another while avoiding user/pass prompts or the need to store plaintext passwords on the remote host.
Anyone know if there's a way to resolve a user account password via PAM when using passwordless SSH or, another approach I could take to perform scripted tasks on the remote system requiring authentication? Ideally without storing the passwords on the remote system (at least in unencrypted form).
View 1 Replies
View Related
Aug 22, 2009
I have an rsync server and am now setting up cwrsync on my windows machine. I want to be able to run cwrsync over ssh with public private keys. I followed a tutorial over here to set this up. It, however, still prompts me for server password and works only if I provide the password. For some reason the public/private key process is not working.
- I generated a key using the command: ssh-keygen -t rsa -N '' (I verified the key gets generated on my Windows machine)
- I uploaded the generated file id_rsa.pub to server /root/.ssh/authorized_keys
I am also prompted for a password if from command prompt I run this command to log into server: ssh -i c:docume~1user.sshid_rsa root@<server_ip_address> On server I have changed the configuration file (/etc/ssh/ssh_config) to say:
RSAAuthentication yes
PubkeyAuthentication yes
I then restarted the sshd service, however, to no avail.
View 4 Replies
View Related
Sep 8, 2009
Many of mails sent from my mail server that are in Queue;The main reason is deffered by domains like yahoo,aol,etc.but there is one more error that i keep getting and that is Host Unknown,Below is an example from mail log,The catch is,test mail sent on the same email id sent from my personal mail from the same server i.e. url was deliveredHowever,another mail containing client information sent from customercare@mycompanysdomain ended up in queue.
There are more examples of the same,around 20 domain have the same problem.
Sep 7 14:33:46 server2 sendmail[24591]: n8793jiC024589: to=<abc@xyz.fi>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=163672, relay=xyz.fi., dsn=5.1.2, stat=Host unknown (Name server: xyz.fi.: host not found)
Sep 7 22:09:42 server2 sendmail[6407]: n87Gdffa006403: to=<abc@def-fgh.com>, delay=00:00:00, xdelay=00:00:00, mailer=esmtp, pri=152474, relay=def-fgh.com., dsn=5.1.2, stat=Host unknown (Name server: def-fgh.com.: host not found)
View 2 Replies
View Related
Mar 4, 2010
I am working on a cluster for a molecular dynamics class and I have to edit my FORTRAN code (only the newest and best for me!). In order to get through to the cluster I have to ssh in. The network on which the cluster resides is behind a firewall, so I have to ssh through the firewall into the network first.
this is fine, I can login and move files and folders as needed, including sftp-ing into host 1, then into the cluster so I can transfer files from cluster to host and then host to me. This gets rather tiresome, so it would be nice to edit the files in place.
The problem is that when I access my code with emacs it launches the emacs client on Host 1, with no mouse support. I know the purists will howl about how I should be using keyboard shortcuts, but I am a chemist and not a programmer, so the mouse is very nice for me. Is there any way I can perhaps mount the cluster using sshfs so that when I open my code it launches a local instance of emacs? Sorry if this is the wrong forum, but I thought it was network related.
View 3 Replies
View Related
Oct 12, 2010
I got a bunch of machines (~10) that I share with my co-workers. I have appropriate .ssh file(s) set up so I don't get prompt for password when I try to ssh.Currently I ssh into these hosts and then do a top to check the load before I start using the machine. Because I don't want to be on a busy host.Can someone show me how to write a script that find a least-busy host given a list of hosts to check? (hardcoded is fine)
View 1 Replies
View Related
Oct 30, 2009
Bit of an odd one, this. I've migrated a website from my old server to a new machine. Both servers run Ubuntu + Apache2. Both only serve a single site, apart from the default site.I've flipped the domain name to the new IP address.The trouble is that after moving the virtual host config over into sites-available, with the necessary link in sites-enabled, Apache attempts to serve from the default web root (/var/www) rather than the actual site content (in /var/www/technology). So for example, an attempt to browse.
View 1 Replies
View Related