sshVerifying SSH Key FingerprintSubmitted by sandip on Thu, 01/01/2009 - 21:02.If you've been given a public ssh host key and want to verify it before adding it permanently to your ssh known_hosts file: Get the public ssh key: $ ssh-keyscan -p 22 -t rsa,dsa {remote_host} > /tmp/ssh_host_rsa_dsa_key.pubGet the ssh key fingerprint: $ ssh-keygen -l -f /tmp/ssh_host_rsa_dsa_key.pubFix for SSH timeouts on LinkSys WRT54GS wireless routerSubmitted by sandip on Tue, 06/17/2008 - 23:57.A recent storm surge killed my Belkin wireless router and was quickly replaced by a LinkSys WRT54GS wireless router. But, for some reason my ssh clients would time out due to inactivity of just a couple minutes. A quick fix was to include the below line in "/etc/ssh/ssh_config": ServerAliveInterval 60Incremental snapshot backups via rsync and sshSubmitted by sandip on Fri, 04/04/2008 - 19:35.In follow-up to the previous post, I am compiling this as a separate post as this solution is been running very stable for a while with quite a few updates and changes... I will be setting up a back-up of a remote web-host via rsync over ssh and creating the snapshot style backup on the local machine. The backups are done incremental, only the files that have changed are backed up so there is very less bandwidth used during the backup and also does not cause any load on the server. These are sliced backups, meaning that you get a full backup of the last 4 days, and the last 4 weeks. So data can be restored for upto a month of back date. Below is an example listing of backups you would see. Mar 11 - daily.0 Each of those is a full snapshot for the particular day/week. The files are all hard-linked and would only require 2 to 3 times the space used on the server. The backups should consist of web, database, email and some of the important server configuration files. SSH Chroot in ISPConfig Centos-4.6Submitted by sandip on Thu, 02/28/2008 - 00:58.Below is reference of how I have setup chroot SSH jail for users in CentOS-4.6 with ISPConfig installed replacing the openssh rpm with the one from chrootssh.sourceforge.net . It's easy on ISPConfig as support for chroot SSH is now built in with the control panel, you simply need to get chrootSSH installed and then enable the ssh option located in the config file at "/home/admispconfig/ispconfig/lib/config.inc.php": $go_info["server"]["ssh_chroot"] = 1;If you need for the ssh chroot to access additional application, the file "/root/ispconfig/scripts/shell/create_chroot_env.sh" which builds the chroot needs to be edited. Also, check and edit the location of mysql socket file.  |
User loginRecent blog posts
Who's onlineThere are currently 0 users and 15 guests online.
|