IPKM DokuWiki

User Tools

Site Tools

Trace:
general:ssh

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
general:ssh [2023-12-08 11:30] Markus Rosenstihlgeneral:ssh [2023-12-08 11:38] (current) Markus Rosenstihl
Line 2: Line 2:
  
 You can make it easier accessing Linux systems when you use SSH keys, they are also MUCH more secure and the preferred access method. You can make it easier accessing Linux systems when you use SSH keys, they are also MUCH more secure and the preferred access method.
 +
 +<WRAP center round important 60%>
 +HRZ will block SSH access from outside university somewhen in 2024!
 +Then you need to start VPN first.
 +</WRAP>
  
 You need to create first an SSH key and then add the **public** part in the ''.ssh/authorized_keys'' file in your home directory on the remote system. You need to create first an SSH key and then add the **public** part in the ''.ssh/authorized_keys'' file in your home directory on the remote system.
Line 7: Line 12:
 Creating a new key is simple with [[https://man.openbsd.org/ssh-keygen|ssh-keygen]]: Creating a new key is simple with [[https://man.openbsd.org/ssh-keygen|ssh-keygen]]:
  
-    ssh-keygen -t ed25519+  ssh-keygen -t ed25519
  
 This will create a private and public (default would be id_ed25519 and id_ed25519.pub, respectively) keys in your  ~/.ssh folder. This will create a private and public (default would be id_ed25519 and id_ed25519.pub, respectively) keys in your  ~/.ssh folder.
Line 14: Line 19:
 There is a helper script on most Linux system to aid you with that: There is a helper script on most Linux system to aid you with that:
  
-    ssh-copy-id -i ~/.ssh/id_ed25519.pub  username@remote_system+  ssh-copy-id -i ~/.ssh/id_ed25519.pub  username@remote_system
          
  
-Choose a difficult and long passphrase, you do not have to type it often as most Linux systems have an ssh-agent setup. You only need to "unlock" the key once (!) on your local PC. From then on you can have password free logins to all systems where you added your SSH public key.+Choose a difficult and long passphrase, you do not have to type it often as most Linux systems have an ssh-agent setup. You only need to "unlock" the key once (!) on  
 +your local PC. From then on you can have password free logins to all systems where you added your SSH public key. 
 + 
 +Access to your PC depends on your group: 
 + 
 +  * [[agdrossel:working_remotely_on_the_cluster| AG Drossel]] 
 +  * AG Vogel 
 +  * AG Liebchen
  
 If you logout and login again, most desktop environments will ask you to provide the passphrase to unlock your key(s). If you logout and login again, most desktop environments will ask you to provide the passphrase to unlock your key(s).
Line 43: Line 55:
 If they agent is not working (ssh-add does not work) you can try to start it manually with: If they agent is not working (ssh-add does not work) you can try to start it manually with:
  
-//eval ssh-agent $SHELL//+  eval ssh-agent $SHELL
  
 Other solution would be [[https://stackoverflow.com/a/18915067/492432|here]] Other solution would be [[https://stackoverflow.com/a/18915067/492432|here]]
 +
 +Access depends on your group:
 +  * [[agdrossel:working_remotely_on_the_cluster|AG Drossel]]
 +  * [[agliebchen:cluster#how_can_i_connect_to_the_cluster|AG Liebchen]]
 +  * AG Vogel
  
general/ssh.1702031417.txt.gz · Last modified: 2023-12-08 11:30 by Markus Rosenstihl