No subject
Sat Feb 2 07:43:15 EST 2008
private in .ssh directory under my userid. (I used ssh-keygen -t dsa)
C:\Documents and Settings\Anthony>dir .ssh
Volume in drive C is IBM=5FPRELOAD
Volume Serial Number is 90B7-1915
Directory of C:\Documents and Settings\Anthony\.ssh
02/17/2008 10:57 AM <DIR> .
02/17/2008 10:57 AM <DIR> ..
02/02/2008 01:16 PM 736 id=5Fdsa
02/02/2008 01:16 PM 613 id=5Fdsa.pub
02/17/2008 10:57 AM 395 known=5Fhosts
3 File(s) 1,744 bytes
2 Dir(s) 1,436,667,904 bytes free
I copied id=5Fdsa.pub onto a USB key, and mounted it onto my squid server. =
mkdir -p /root/.ssh
cp /media/usb/id=5Fdsa.pub /root/.ssh
cd /root/.ssh
touch authorized=5Fkeys
cat id=5Fdsa.pub >> authorized=5Fkeys
chmod 400 authorized=5Fkeys
cd ~
(unless you add your key to authorized=5Fkeys file, it won't work)
Now, you have to do this process all again from Squid to XS
from /root on squid, generate a key, copy pub to USB stick, copy over to=20
XS, and add to end of its authorized=5Fkeys.
For me to SSH over to my school server (XS), I have to SSH over to Squid=20
first, then from Squid to XS. Here's what
it looks like from my Windows box:
C:\Documents and Settings\Anthony>ssh -l root 192.168.0.29
Enter passphrase for key '/home/Anthony/.ssh/id=5Fdsa':
Last login: Sat Feb 23 16:18:58 2008 from 192.168.0.10
Welcome to an OLPC Squid Server
[root at squid ~]# ssh -l root 10.0.0.77
Enter passphrase for key '/root/.ssh/id=5Fdsa':
Last login: Sat Feb 23 15:36:33 2008 from 10.0.0.1
Welcome to an OLPC Schoolserver
[root at schoolserver ~]# mysqladmin version
Notice that I purposely changed the "welcome" and "[root at xxxxx ~]" prompt=20
so I can keep the two distinct.
I now have two CMD windows on my Windows box, one SSH to Squid, and the=20
other SSH'd over to XS.
I have not tried to do this from the XO laptop in the reverse direction.=20
Currently I am working on fixing my iptables,
as I can't get the XO to talk to anything besides XS server.
Thanks
Tony Pearson
Senior Storage Consultant, IBM System Storage?
Telephone: +1 520-799-4309 | tie 321-4309 | Cell: +1 520 990-8669
email: tpearson at us.ibm.com | GSA: http://tucgsa.ibm.com/~tpearson
Blog: http://www.ibm.com/developerworks/blogs/page/InsideSystemStorage
AKA: 990tony Paravane, eightbar specialist=20
--=_alternative 000EA25C072573F9_=
Content-Type: text/html; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
<br><font size=3D2 face=3D"sans-serif">Stefan wrote:</font>
<br><tt><font size=3D2>>Hello Everybody, I've been trying to find
some information on how to putty (my favorite windows ssh client) into
>my xs server (build 150). Putty's response: 'No supported authentication
methods available', which is also what I >find in /var/log/secure I
created a 1024 bit rsa key pair with puttygen and coppied the public part
to >~/.ssh/rsa=5Fid.pub.I restarted sshd but it didn't help. (Automounti=
ng
the drivekey to /media would have been much >appreciated... - the XO
does that really nicely.) Any suggestions which way to turn? Having
never seen a well >set-up xs server, I don't quite know what to expect..=
.-
I know Apache is running because I get the 'Fedora Test >Page' presented.
Shouldn't there be something else? - I have a dhcp enabled access point
connected to eth1, but I >can't log on to it with my XO. ifconfig shows:
eth1 (inet addr:172.18.0.1 Bcast:172.18.1.255 Mask:255.254.0) UP >BROADC=
AST
MULTICAST with 0 RX and TX packets eth1:1 (inet addr:172.18.1.1 Bcast:172.1=
8.1.255
Mas<br>
> k:255.254.0) UP BROADCAST MULTICAST with no information on RX and
TX packets - The HWaddr for both is identical. >eth0 provided internet
connectivity right out of the box and says UP BROADCAST RUNNING MULTI=
CAST.
I feel clue >less. The access point works fine - as soon as I connect
it directly to my switch the XO can connect to it. >ejabberd:
I followed the steps on http://wiki.laptop.org/go/XS=5FConfiguration=5FMana=
gement
, but once I go to the web >interface, I can't log on. None of the creat=
ed
user name - password combinations ever works. I guess I am spoiled
>from my CentOS SME server. Nice integrated web interface. Lots of funct=
ionality
out of the box. I really need to >get this box running. Everything above
was originally meant to be 'just a basic condition' - the important thing
- >with respect to an upcomming demonstration - is presenting dansguardi=
an...
None the less is this an awsome project >deserving of some sweat
and tears ;-) Thank you all for your patience with my venting</font>=
</tt>
<br><tt><font size=3D2>>Stefan</font></tt>
<br>
<br><font size=3D2 face=3D"sans-serif">Hi Stefan,</font>
<br><font size=3D2 face=3D"sans-serif">SSH is the first thing I got working,
as I find this essential. Here is diagram my test setup: (http://www=
.990tony.com/olpc/tony-build1.jpg)</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Windows----XP----XS----XO (XP
is a Proxy/Squid/DansG, XS is LAMP/Moodle, XO is lapto=
p)</font>
<br>
<br><font size=3D2 face=3D"sans-serif">From my Windows machine, I generated
SSH keys, and kept both public and private in .ssh directory under my useri=
d.
(I used ssh-keygen -t dsa)</font>
<br>
<br><font size=3D2 face=3D"sans-serif">C:\Documents and Settings\Anthony>=
;dir
.ssh</font>
<br><font size=3D2 face=3D"sans-serif"> Volume in drive C is IBM=5FPRE=
LOAD</font>
<br><font size=3D2 face=3D"sans-serif"> Volume Serial Number is 90B7-1=
915</font>
<br>
<br><font size=3D2 face=3D"sans-serif"> Directory of C:\Documents and
Settings\Anthony\.ssh</font>
<br>
<br><font size=3D2 face=3D"sans-serif">02/17/2008 10:57 AM &nb=
sp;<DIR>
.</font>
<br><font size=3D2 face=3D"sans-serif">02/17/2008 10:57 AM &nb=
sp;<DIR>
..</font>
<br><font size=3D2 face=3D"sans-serif">02/02/2008 01:16 PM &nb=
sp;
736 id=5Fdsa</font>
<br><font size=3D2 face=3D"sans-serif">02/02/2008 01:16 PM &nb=
sp;
613 id=5Fdsa.pub</font>
<br><font size=3D2 face=3D"sans-serif">02/17/2008 10:57 AM &nb=
sp;
395 known=5Fhosts</font>
<br><font size=3D2 face=3D"sans-serif"> &=
nbsp;
3 File(s) 1,744 bytes</font>
<br><font size=3D2 face=3D"sans-serif"> &=
nbsp;
2 Dir(s) 1,436,667,904 bytes free</font>
<br>
<br><font size=3D2 face=3D"sans-serif">I copied id=5Fdsa.pub onto a USB key,
and mounted it onto my squid server. </font>
<br>
<br><font size=3D2 face=3D"sans-serif">mkdir -p /root/.ssh</font>
<br><font size=3D2 face=3D"sans-serif">cp /media/usb/id=5Fdsa.pub &n=
bsp;/root/.ssh</font>
<br><font size=3D2 face=3D"sans-serif">cd /root/.ssh</font>
<br><font size=3D2 face=3D"sans-serif">touch authorized=5Fkeys</font>
<br><font size=3D2 face=3D"sans-serif">cat id=5Fdsa.pub >> authorized=
=5Fkeys</font>
<br><font size=3D2 face=3D"sans-serif">chmod 400 authorized=5Fkeys</font>
<br><font size=3D2 face=3D"sans-serif">cd ~</font>
<br>
<br><font size=3D2 face=3D"sans-serif">(unless you add your key to authoriz=
ed=5Fkeys
file, it won't work)</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Now, you have to do this process all
again from Squid to XS</font>
<br>
<br><font size=3D2 face=3D"sans-serif">from /root on squid, generate a key,
copy pub to USB stick, copy over to XS, and add to end of its authorized=5F=
keys.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">For me to SSH over to my school serv=
er
(XS), I have to SSH over to Squid first, then from Squid to XS. Here's
what</font>
<br><font size=3D2 face=3D"sans-serif">it looks like from my Windows box:</=
font>
<br>
<br><font size=3D2 face=3D"sans-serif">C:\Documents and Settings\Anthony>=
;ssh
-l root 192.168.0.29</font>
<br><font size=3D2 face=3D"sans-serif">Enter passphrase for key '/home/Anth=
ony/.ssh/id=5Fdsa':</font>
<br><font size=3D2 face=3D"sans-serif">Last login: Sat Feb 23 16:18:58 2008
from 192.168.0.10</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Welcome to an OLPC Squid Server</fon=
t>
<br><font size=3D2 face=3D"sans-serif">[root at squid ~]# ssh -l root 10.0.0.7=
7</font>
<br><font size=3D2 face=3D"sans-serif">Enter passphrase for key '/root/.ssh=
/id=5Fdsa':</font>
<br><font size=3D2 face=3D"sans-serif">Last login: Sat Feb 23 15:36:33 2008
from 10.0.0.1</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Welcome to an OLPC Schoolserver</fon=
t>
<br><font size=3D2 face=3D"sans-serif">[root at schoolserver ~]# mysqladmin ve=
rsion</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Notice that I purposely changed the
"welcome" and "[root at xxxxx ~]" prompt so I can keep
the two distinct.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">I now have two CMD windows on my Win=
dows
box, one SSH to Squid, and the other SSH'd over to XS.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">I have not tried to do this from the
XO laptop in the reverse direction. Currently I am working on fixing
my iptables,</font>
<br><font size=3D2 face=3D"sans-serif">as I can't get the XO to talk to any=
thing
besides XS server.</font>
<br>
<br><font size=3D2 face=3D"sans-serif">Thanks</font>
<br><font size=3D2 face=3D"sans-serif"><br>
</font>
<table>
<tr>
<td bgcolor=3D#006699>
<td bgcolor=3D#006699>
<tr>
<td><img src=3Dcid:=5F2=5F02A5290802A5254C000EA25C072573F9>
<td><font size=3D1 color=3D#0060a0 face=3D"Microsoft Sans Serif"><b>Tony Pe=
arson</b></font><font size=3D1 face=3D"Microsoft Sans Serif"><br>
Senior Storage Consultant, IBM System Storage™<br>
Telephone: +1 520-799-4309 | tie 321-4309 | Cell: +1 520 990-86=
69<br>
email: tpearson at us.ibm.com | GSA: http://tucgsa.ibm.com/~tpearson<br>
Blog: </font><a href=3Dhttp://www.ibm.com/developerworks/blogs/page/InsideS=
ystemStorage><font size=3D1 color=3Dblue face=3D"Microsoft Sans Serif"><u>h=
ttp://www.ibm.com/developerworks/blogs/page/InsideSystemStorage</u></font><=
/a><font size=3D1 face=3D"Microsoft Sans Serif"><br>
AKA: 990tony Paravane, eightbar specialist </font>
<tr>
<td bgcolor=3D#006699>
<td bgcolor=3D#006699></table>
<br>
--=_alternative 000EA25C072573F9_=--
--=_related 000EA25C072573F9_=
Content-Type: image/jpeg
Content-ID: <_2_02A5290802A5254C000EA25C072573F9>
Content-Transfer-Encoding: base64
/9j/4AAQSkZJRgABAAEAYABgAAD//gAfTEVBRCBUZWNobm9sb2dpZXMgSW5jLiBWMS4wMQD/2wCE
AAgFBgcGBQgHBgcJCAgJDBQNDAsLDBgREg4UHRkeHhwZHBsgJC4nICIrIhscKDYoKy8xMzQzHyY4
PDgyPC4yMzEBCAkJDAoMFw0NFzEhHCExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTEx
MTExMTExMTExMTExMTExMf/EAaIAAAEFAQEBAQEBAAAAAAAAAAABAgMEBQYHCAkKCwEAAwEBAQEB
AQEBAQAAAAAAAAECAwQFBgcICQoLEAACAQMDAgQDBQUEBAAAAX0BAgMABBEFEiExQQYTUWEHInEU
MoGRoQgjQrHBFVLR8CQzYnKCCQoWFxgZGiUmJygpKjQ1Njc4OTpDREVGR0hJSlNUVVZXWFlaY2Rl
ZmdoaWpzdHV2d3h5eoOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO0tba3uLm6wsPExcbHyMnK
0tPU1dbX2Nna4eLj5OXm5+jp6vHy8/T19vf4+foRAAIBAgQEAwQHBQQEAAECdwABAgMRBAUhMQYS
QVEHYXETIjKBCBRCkaGxwQkjM1LwFWJy0QoWJDThJfEXGBkaJicoKSo1Njc4OTpDREVGR0hJSlNU
VVZXWFlaY2RlZmdoaWpzdHV2d3h5eoKDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5
usLDxMXGx8jJytLT1NXW19jZ2uLj5OXm5+jp6vLz9PX29/j5+v/AABEIAIwAigMBEQACEQEDEQH/
2gAMAwEAAhEDEQA/APaPwH5Uhh+A/KgA/AflQAfgPyoAPwH5UAH4D8qAD8AB9KQHJa747srGZrew
iW7lQkM+7CKfQH+KuWpiVHSJ108M5at2MBviBrBJKrZKOy+WTj9a5/rc+x0fVKfmTWvxC1FHBura
1mTPIUFCPocn+VNYua3QnhI9GdjoHiCy1yJjbExypy8MnDKP61206sZ7HFUpSpmr+Va7GQfgPyoA
PwH5UAH4D8qAD8B+VAB+A/KgA/AflQAUAFABQAUAFAB+gHWgRwHxX8Wf2VAmkWcuy5nG6dlPMcZ6
L9W6/SuetO2iOijDW7PLFvo4wPOk2n0zXCqbex3c6RINVtyAFlzQ6bQ1VRIuqwKcNLt+vFT7NvYr
2qRoaPrv9n38N9ZzbmhbLKrcsueR+NVFSpu5MnGase7W88dzbxzwkGOVQ6kdCCAQfyNeqnfU8pq2
hJTEFABQAUAFABQAUAFABQAUAFAAAcjA/LtQtxM+cvHl2brxtq0p6/aWUZBBwp2jg/7tcU9Xc7Y6
JIwJBJtfYoLAZCkZLnPr2oi49XYclJbIv2lk4uIjsJQ4zuXbg+n/ANes6klayZpThK6ui1r1iwQP
BAGAGSFH9e1RSn0bNK0OyMyImN42iZCCMkIOUPcHt+IredrWTMIN3vY+jfBLb/B+jt/etIz+ldcP
hRxz+I2aokKACgAoAKACgAoAKACgAoAKAOY+J91dWfgfUZbFmSQhELL1VWYBsHtwcfjUTdloXTSc
rHz00jvch5DubHDnqfrXLa0Tp+2XodTkhQBP5CsuQ6YzsiSbVLqSNQm4Y74yalQS3E6kugttql3E
+H3OmOSw6U3CPQanJbj31JJFbfGu49TtGSKSgxuaselfBDVtSvodQtryZ5bW1jiECt0j68D8P5V3
UnujgrK1j0z6VsYBQAUAFABQAUAFABQAUAFABQBn+I9LXWdBvtNOB9piKKT0DdVP5gUpK6sOL5Xc
+adWs5dO1FreaF4p4uJYnGCh46eo9/euVKycWdct1JEZGM9setQWT213JAMIsY95GxUuNyk7Est/
LJGUeKID+9G9TyWejKcrmfI2FLDvwK0S1Mm9LHuXwX0k6f4alumBH22UMuR1VRgEe2d1dFJWRz1X
rY7ytjEKACgAoAKACgAoAKACgAoAKACgDF8X6ba3nh7VGmt4ml+xyDzTGpcYUngkZqZJWKjJpnze
M4BriO0SW4jhiJePc3bBxVwg5Mic+VCW11FJGymHEvUHNVVp8uqJpVL6M9D+DOgW2qXmp3Oo28Vz
bwxCHZIMgsxz/wCy06KuKq2tj2hI0iRY4kVI0G1VUYAHYAV02sjmYtABQAUAFABQAUAFABQAUAFA
BQAfSgDJ8YT/AGXwpq0w28WsijdwDlSP61M3ZFRV2fNxQx8HHHWuG53WI5I45MblBx0qlJx2JcU9
wihjRv3aYNNzbWolBJ6Hq3wLbyrnU4CzAyRo6oB1wTk/rV0GrtGdeNkmeqiuo5goAKACgAoAKACg
AoAKACgAoACcdwKBFDW9b07QbU3Gq3a2ydFU8ux9FXqaai3sDdjxjxt8QbnxFMbZLdrfS1bKx5+d
sdC3+H86KuHclozSlUUHqc06RyjfGwINeY1KGjR33UtUU5oyjYFNMlpotWUQwCamTKijbsNan8OT
w31l/r0PyoThXHocdqrDwlOd0KvJRjZnp3hz4laRqSpFqZGl3OOfMb90x9A/b6GvWlSa2PMTO0Uq
wBUggjII7istigoEFAwoAKACgAoAKACgDK1zxJo+gqf7Tvo4ZMZEI+aQ/RRzVqDYrnAa98WZ23x6
DY+QvQT3OCw9woOP51oqXcTZ5vqF/dajqLXF9cSzzuOZJGy3/wBYe1bWtsSQsoyQAP8ACgQxN8D7
4iAO6noaxqUVNamsKkoPQ2NIs4NauUtoZRDdvnbFIPveuDXnSws4PQ61iIvc7HS/h45RZLm8iSPG
Tt5//VUfV29yvrCWyOF1HypNUuGt23Qo5SJs/wAI7/j1/KvVoUo046HFUqOb1IZiFXHrW70Mzb0D
xhrWgoI9PvCLdTnyJRuj/wDrfhUOCY7ncaP8W4JNsesac8bd5LVtw+u081k6XYEzu9H1jTtatxPp
V3HcpjJCn5l+q9R+VYuLRVy9xSGFABQAUCKmrapZaPYve6lcLBbpwWPc+gHc00r7AeT+J/ilqN67
Q6EDp9t/z0YAyt7/AOz/AD5reNNLcVzgprlpZnlldpZXOWdzksfUnvWu2xIzfj2ouA1gzEGM7cUA
OjkOdjjDfzoQhSw6dKYyfSLyG1vftDTvBcW2JICoyC+eh9Kh66AjpPEnxNa58Orp9jbC2upwRdSA
ZABPIXPTIrLkUWVd2OXsXSW3WSPAU9vT2rpjaxI64wAD6GhiGA8UhjGYDg8j0PNLYNiayv7ixuFu
LG4kt5k5DxNtI/z70aAet+AviKmptDpmuFYr1zsinAwkx9G9G/nWE6dtikz0LpWJQUAVtTvYNM06
5vrttsFtE0kmOuAM8ULcR89+MvF974o1L7RckxW8ZPkW4PEY9fdumfpXVFKJNznJbjHA4FFxBHIT
0NNMCwi5wTVAWFB6CmhBKjbcgZ28igCVksJtPia3nlN8zHejJhFHsfWo1ZWxj/PDK8cgy4PzUutg
K11EN2R+HtSYJmr4XH2i5No8sUG/lXlOBmnGVgaL17CYLhoXKFkODsbIP41adxbEQUdqYiKZMGho
ZSlYoSO1RewD47kqeGPXPBwf/wBfFFxnvvwv8V/8JHovlXT51CyCrN/00U/df9MH6VhONnoNHX5x
wQc1Ggzzz4560LDwzFpkbgTahKAQOvlocn9cfkauC1EzwtpfQ1qxEAJJ9qQFy2q0hFuM1QE4JA4o
EODH0Bx607gNYAn5QF7nHFICEQh7lS/3lQjHr70JajHNFEDhUDY7kUNAMEEYbJGD7dqVgNCytGvG
ZVlRGUbsOTyPahuyAni0yWS3WWGWKTcCQoJycde1HNYCvNayiBHKjZIdqsDnn0ptoDGv1O09iKlj
KavgYqAO8+Cmpm18c28BbCXkUkJHqcbh/wCg0pbDR9B4B5yRmsBnzF8QNf8A+Ei8U3moKzGDPl24
P8Ma8DH15P410LREnMk/NQAq8UAXbdsAAYqkxFyGqQE4wKYChhQAnXgDFAiJXP2xlPURf1o6jL+p
nTzLEdPV0HljzA396pjfqDKBNUItafeLZymRoRISNoyxGPXpUtXAu2usLb24hjtwAMkYlOPxHeho
AttVitrWKJYCdrFmBxjJ6Y+h/nRYZhayVN1I0RBV/m/PmlsMyjx0qQOh+G92LHx3o0p27ftKodxw
Pm+X8/mpPYaPp9jhiMnr2FYDPkCRsHA4H8q6GSMoAWgCaJ8GmBdgk44NVcROHNO4DwRimA5XGcUA
RgZvC4x9wChbgJMxD0tgsMLYPFIBVk96YD93900AN3Y6cUXAqXLDbgcAUmMonrUAbXgWSOPxpojT
gGMXsW4EZ43AdPqRSewH1RlBwVfI9qwKPjxutdBIo6UAA9hQAoOOlAE8MmKpMCyktNMB4l9KLiFW
THSncB6t+8/DFFwCehgQFsHApANLelACrNjjNFwBpaTYytK+cilcCA0gJtPcx39u6ttKyqc5wRzm
k9gPr45JyMEeuetY2GfHJrcQvT/D1oA7H4eeDW8TQ6xdSKTBY2sgj7bpyh2D8ME/iKluw0ceMkZ5
5qhCjigBwc0ASq5FNASoTTuImTiT6CmgHuc02BFIvQrUsCFwRSAhZiKBjd5zxSAaTQAhoAQZzwcH
19KQH0zoHjvSn0LT3nnxK1tGXHo20Z/WosM+Z8VoI3vA/ha68Xa4unWziGJV8y4mIz5cYPX6noB6
/Sk3YZ9K6BolhoGlxabplusVtGOQfvMT1Le/rWLY7Hy94lsRpfiLUrFQALe5kjGPQMcfpWy2JM40
wCgCRMZoAtR4HQUwHp/rGPoRx/n61SEOc4PIwPXtn0oegCD24Pp6UAI446UmBVlXHSkMhxjpSAbQ
AdKADHBHrQBrw6zbRQpG0cm5FCnB4yBU2GZA+8o9Tj9KoR778BLC2g8DC/SMfab24k81z1IQ7VA9
hz+dYyZSPRM4qRny58QuPHeu4/5/ZR/49W62JMEGmIKAJEoAsocY96aAN5WR+nWnsI6m6SP/AIRV
CY0ye+O/rWV3cbOXT5elbCHbjSAjkFAEJGKQyNhigBppAIeKAJdgPOTSsM//2Q==
--=_related 000EA25C072573F9_=--
More information about the Server-devel
mailing list