Difference between revisions of "Ssh into nodes"
(Created page with "Joe has added a whitelist system for sshing into server nodes. It'll now only allow jw279 and pjt6 to ssh into the nodes. AllowUsers jw279 pjt6 have been added to /etc/...") |
|||
| Line 1: | Line 1: | ||
| − | + | SSH has a whitelist system for sshing; only people who are on it can ssh into the nodes if | |
AllowUsers jw279 pjt6 | AllowUsers jw279 pjt6 | ||
| − | + | has been added to | |
/etc/ssh/sshd_config. | /etc/ssh/sshd_config. | ||
| + | |||
| + | This is great and stops people ssh-ing into nodes, but also stops qrsh into nodes. This is because we use ssh to connect. | ||
| + | |||
| + | qconf -sconf | ||
| + | |||
| + | shows this in the lines | ||
| + | |||
| + | rsh_command /usr/bin/ssh | ||
| + | rsh_daemon /usr/sbin/sshd -i | ||
| + | |||
| + | From [http://gridengine.org/pipermail/users/2014-October/008008.html] changing | ||
| + | |||
| + | rsh_command /usr/bin/ssh | ||
| + | |||
| + | to | ||
| + | |||
| + | rsh_command /usr/bin/ssh -i -f /etc/ssh/sshd_qrsh_config | ||
| + | |||
| + | should work if we add the AllowUsers line to sshd_config and have an identical copy of it without this line called sshd_qrsh_config. | ||
| + | |||
| + | It doesn't though and I can't work out why. | ||
Latest revision as of 15:29, 17 October 2018
SSH has a whitelist system for sshing; only people who are on it can ssh into the nodes if
AllowUsers jw279 pjt6
has been added to
/etc/ssh/sshd_config.
This is great and stops people ssh-ing into nodes, but also stops qrsh into nodes. This is because we use ssh to connect.
qconf -sconf
shows this in the lines
rsh_command /usr/bin/ssh rsh_daemon /usr/sbin/sshd -i
From [1] changing
rsh_command /usr/bin/ssh
to
rsh_command /usr/bin/ssh -i -f /etc/ssh/sshd_qrsh_config
should work if we add the AllowUsers line to sshd_config and have an identical copy of it without this line called sshd_qrsh_config.
It doesn't though and I can't work out why.
