[K12OSN] automated SSH pairs (cool!)
Shawn Powers
spowers at inlandlakes.org
Fri Aug 6 13:53:48 UTC 2004
Ok, Les will be proud, I think I can (while using the insecure NFS
unfortunately) use the collective knowledge of the list and automate "on
the fly" keyspairs for the appserver. I tried this manually (not scripted
into the /etc/X11/xinit/xinitrc.d directory, heck I didn't even know that
existed...) and it seemed to work:
ssh-keygen -t rsa -f ~/.ssh/id_rsa -C '' -N ''
ssh-keyscan -t rsa "appserver_ip" > ~/.ssh/known_hosts
ssh-keyscan -t rsa "appserver2_ip" >> ~/.ssh/known_hosts
cat ~/.ssh/id_rsa.pub > ~/.ssh/authorized_keys2
Then, in those 4 automated steps, my user is keypaired to start
applications from appserver and appserver2. (I know that "ssh-keyscan"
allows multiple IPs on the same command, but the comma separated list
wouldn't work for me. Some things just aren't worth troubleshooting. :)
This DOES require /home to be the same on both machines, but so does
remote application stuff anyway, usually.
Thank you Immanuel, Gavin, Les, and anyone else that piped in on this
thread. :)
--
Shawn Powers
Technology Director
Inland Lakes Schools
PHN: 231-238-6868 x9174
FAX: 509-356-7024
spowers at inlandlakes.org
http://techcorner.inlandlakes.org
--<Disclaimer, now required for frustrating reasons>--
The views, opinions, visions, thoughts, comments, sarcastic whims,
forecasts, poetic outbursts, cynical wit, future plans, implementation
ideas, OS preference, curricular insight, ice cream preference, or
anything else I might infer are not the views of Inland Lakes Schools.
Pretty much everything I say, do, think, or imply with punctuation should
be considered my own delusions, and ignored completely.
More information about the K12OSN
mailing list