Skip to main content

Thread: RSA ssh keys

-

im in situation administrate multiple servers (in hundreds) , have created script, allow servers download specific files @ central server. how can ensure rsa keys people cant go script (vim it) , see server script using.

example of command use download different files.
scp -r server1:/files .

use ssh execute commands on central server build files should be
downloaded. since done user input (variables)

ssh -f server1 "command"

here users read server server1 , rsa works on ssh can connect , make trouble.

way mask server1 ip? script string on hidden place on local system normal users cant figure out or can do?

hopes makes sense.
if docent, please don't hesitate so.

on advance.
kind regards.

you can make keys single purpose. when have them in authorized_keys add command="" beginning of key , put command between quotes.

so

code:
ssh-rsa aaaab3nzac1yc2eaaaadaqabaaabaqcpt+hq9p364aurmigrdauovu0tou4fu50bqtkewkvisvy/vl5unw7dlxxep+lr26rtax81n10farumzrwiipfnwa8s7ujgaqxtnqlarux1ahsdnmrrzumcrsqenbdomd/q2aiu8wljcqexwddwrihepe9nut0zfi2fazo16zbt1xff3uhkkxykweh9aksyq7sljb+q2jw2rnygvnrf0xjctoni4ybsp/pscocprsrhhkxnbzj5ip+orno0uffyjldmsaimtq6ng0vg06pc1a4i3b8eqegoiv22i5fmli0wveqqzkwndve1rvd4mf5l4t/9ypzlbrctt7tkzufbej/l
becomes

code:
command="/usr/local/bin/somescript" ssh-rsa aaaab3nzac1yc2eaaaadaqabaaabaqcpt+hq9p364aurmigrdauovu0tou4fu50bqtkewkvisvy/vl5unw7dlxxep+lr26rtax81n10farumzrwiipfnwa8s7ujgaqxtnqlarux1ahsdnmrrzumcrsqenbdomd/q2aiu8wljcqexwddwrihepe9nut0zfi2fazo16zbt1xff3uhkkxykweh9aksyq7sljb+q2jw2rnygvnrf0xjctoni4ybsp/pscocprsrhhkxnbzj5ip+orno0uffyjldmsaimtq6ng0vg06pc1a4i3b8eqegoiv22i5fmli0wveqqzkwndve1rvd4mf5l4t/9ypzlbrctt7tkzufbej/l


Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [ubuntu] RSA ssh keys


Ubuntu

Comments

Post a Comment

Popular posts from this blog

How to set the order of FAQs instead of alphabetical

-
i have 19 faqs default showing them in alphabetical order.   i dislplay them in different order, weighting this, , how weighting work, is larger number higher priority, question id show first on list need numbered in weight field 19? hey vickituch,   as mentioned, default faq items sorted alphabetically. weighting, can modify order in faq items appear. way weighting works higher number specify, higher priority faq item have. example, if have 3 items each weight specified, priority follows:   99. faq item. 45. faq item. 7. yet faq item More discussions in Content Management and Modules adobe
Read more

Thread: Get UK Keyboard working

-
i using ubuntu desktop on lucid , keyboard changes british keys american keys, #/£, ~/| , "/@ around. in system->preferences->keyboard menu have set keyboard uk. when log via putty uk keys come out right. there other place more configuration required? /vfclistsguy actually settings should enough.. can try setxkbmap -query see current layout settings. Forum The Ubuntu Forum Community Ubuntu Official Flavours Support Desktop Environments [kubuntu] Get UK Keyboard working Ubuntu
Read more

how do I change the e-mail address for my merchant account

-
aloha   i have different primary address paypal account 1 listed merchant account in form   the different address same paypal account different e-mail address   i change responses   how do that?? hi,   you need register email address want paypal account form, current paypal email used form replaced. that, open form, go options -> collect payments. in paypal setup tab, enter new email address , click register.   please let me know if need more assistance.   thanks,   eman fu senior computer scientist adobe systems inc More discussions in Archived Spaces adobe
Read more