Re: ssh problems

To: segre@agni.phys.iit.edu, debian-science <debian-science@lists.debian.org>, debian-users <debian-user@lists.debian.org>
Subject: Re: ssh problems
From: Francesco Pietra <chiendarret@yahoo.com>
Date: Fri, 16 Mar 2007 10:09:44 -0700 (PDT)
Message-id: <[🔎] 729394.18751.qm@web58906.mail.re1.yahoo.com>
In-reply-to: <Pine.LNX.4.64.0703100913030.2699@localhost.localdomain>
It worked beautifully for a week. At a new boot today
the 32bit machine had taken the former IP address of
the 64bit machine, and viceversa.

$ slogin "IP address of the other machine"
reported
port 22: time out, while internet navigation with
Firefox browser was OK.

I recognize while writing that before this failure I
had changed the "Epiphany" browser of Gnome to
"iceweasel = firefox" because Epiphany does not
provide remote control (for the online help from
NWChem); though, that seems to me immaterial.

A system maintainer suggested to change the eth#
connections of the two machines (Desktopp,
Administration, Networking) from DHCP to Static,
attributing one of the two IP internnal addresses (on
the hypothesis that those were internal addresses to
the router). While doing so, I had to accept
SubnetMask 255.255.255.0 (which was originally empty),
otherwise no OK. That ended in "Network unreachable).

Well, I could delete all shh configuration and keys
and do that again, though for how long?

Any suggestion to stabilize the connection?

Thanks
francesco pietra


--- Carlo Segre <segre@iit.edu> wrote:

> 
> Glad it is working for you now,
> 
> ciao
> 
> Carlo
> 
> On Sat, 10 Mar 2007, Francesco Pietra wrote:
> 
> > Carlo, Jeff:
> > Thanks. The two machines recognize one another
> through
> > the internal IPs of the router. Now I can submit
> the
> > computation from the i386 machine to either my
> other
> > machine amd64, internal to the router, or to any
> > supercomputer center where I have an account along
> an
> > ssh connection. Surprisingly, after an initial
> period
> > where the i386 took any one of the two internal IP
> > addresses (indipendently which machine was started
> > first), now the two machines behave as if they had
> a
> > static address (it is dhcp). I have not
> investigated
> > the Zyxel router, it is as if it had a memory or a
> > register, or he likes me.
> >
> > Cheers
> > francesco
> >
> > --- jeffd <fixedored@gmail.com> wrote:
> >
> >> hm,  so say I have 2 machines A and B.  My
> desktop
> >> will be A.
> >> on A do:
> >> ssh-keygen -t dsa
> >> it will ask you for a password, you dont have to
> put
> >> one in, but it
> >> would be more secure to do so, but for this
> example
> >> just hit enter.
> >> then
> >> scp ~/.ssh/id.dsa.pub  ~/A.pub.key
> >> ssh B
> >> on B:
> >> mkdir .ssh
> >> cat ~/A.pub.key >> .ssh/authorized_keys
> >> chmod -R 600 ~/.ssh
> >>
> >> now check /etc/ssh/sshd_config on B, make sure
> you
> >> have:
> >> RSAAuthentication yes
> >> PubkeyAuthentication yes
> >> PermitEmptyPasswords no
> >> ChallengeResponseAuthentication no
> >> PermitRootLogin yes (once you get ssh keys
> working
> >> you can change the
> >> yes to without-password, to only allow
> connections
> >> with keys)
> >>
> >> then /etc/init.d/sshd restart
> >>
> >> back on A you should be able to ssh B and not be
> >> asked for a password
> >>
> >>
> >> ~
> >> Jeff
> >>
> >>
> >> Francesco Pietra wrote:
> >>> Hi Jeff:
> >>>
> >>> I must have done something wrong because I
> already
> >>> tried unsuccessfully what you suggest.
> >>>
> >>> I must say that on the two machines (Athlon
> i386,
> >>> where the graphical interface in my HOME) and
> >>> multi-dual-opteron (where the QM program in my
> >> HOME)
> >>> both at the same router and with the need to
> have
> >>> access to internet from the i386, I am both root
> >> and
> >>> user with the same username and passwords. May
> be
> >> that
> >>> confusing the system?
> >>>
> >>> If I change username with "chfn" what about the
> >> many
> >>> env variables?
> >>>
> >>> Thanks
> >>> francesco
> >>>
> >>> --- jeffd <fixedored@gmail.com> wrote:
> >>>
> >>>
> >>>> Francesco Pietra wrote:
> >>>>
> >>>>> Hi All:
> >>>>> Is anyone aware of a friendly openssh
> (including
> >>>>> server) that installs on Debian etch and
> allows
> >>>>> interactive connections secured by pubkeys?
> >>>>>
> >>>>> I installed ssh and openssh-server from
> debian.
> >> OK
> >>>>> using password, though I met problems in
> >>>>>
> >>>> configuring
> >>>>
> >>>>> for pubkeys (ssd_config comes with "UsePAM
> yes"
> >>>>> "PermitRootLogin yes" #AuthorizedKeysFile %h/
> >>>>> .ssh/authorized_keys" (does %h refer to every
> >>>>>
> >>>> user?).
> >>>>
> >>>>> Tired with trial-and-error I hope to find an
> >> easir
> >>>>> groung elsewhere.
> >>>>>
> >>>>> Not anyone is a professional administrator,
> >> though
> >>>>> many of us have to get the OS running. A bit
> >> more
> >>>>> comments of the config file would help.
> >>>>>
> >>>>> Thanks
> >>>>>
> >>>>> francesco pietra
> >>>>>
> >>>>>
> >>>>>
> >>>>>
> >>>>>
> >>>
> >>
> >
>
____________________________________________________________________________________
> >>>
> >>>>> Be a PS3 game guru.
> >>>>> Get your game face on with the latest PS3 news
> >> and
> >>>>>
> >>>> previews at Yahoo! Games.
> >>>>
> >>>>
> >>
> http://videogames.yahoo.com/platform?platform=120121
> >>>>
> >>>>>
> >>>>>
> >>>> I think what you are looking for is :
> >>>> PubkeyAuthentication yes
> >>>>
> >>>> then  put your public key on the remote machine
> >> in
> >>>> ~/.ssh/authorized_keys . also make sure that
> file
> >> is
> >>>> chmod'd to 600
> >>>>
> >>>> hth
> >>>> jeff
> >>>>
> >>>>
> >>>>
> >>>>
> >>>
> >>>
> >>>
> >>>
> >>>
> >>
> >
>
____________________________________________________________________________________
> >>> Sucker-punch spam with award-winning protection.
> >>> Try the free Yahoo! Mail Beta.
> >>>
> >>
> >
>
http://advision.webevents.yahoo.com/mailbeta/features_spam.html
> >>>
> >>>
> >>
> >>
> >
> >
> >
> >
> >
>
____________________________________________________________________________________
> > Bored stiff? Loosen up...
> > Download and play hundreds of games for free on
> Yahoo! Games.
> > http://games.yahoo.com/games/front
> >
> >
> >
> 
> -- 
> Carlo U. Segre -- Professor of Physics
> Associate Dean for Special Projects, Graduate
> College
> Illinois Institute of Technology
> Voice: 312.567.3498            Fax: 312.567.3494
> segre@iit.edu    http://www.iit.edu/~segre   
> segre@debian.org
> 



 
____________________________________________________________________________________
Be a PS3 game guru.
Get your game face on with the latest PS3 news and previews at Yahoo! Games.
http://videogames.yahoo.com/platform?platform=120121
Reply to:
Prev by Date: Re: bibliography package
Next by Date: Re: Please test new experimental packages of Cernlib 2006
Previous by thread: Fwd: web browser remote control
Next by thread: by membership
Index(es):
- Date
- Thread