[torqueusers] ssh problems

Jacques Foury Jacques.Foury at math.u-bordeaux1.fr
Wed Oct 19 10:09:50 MDT 2005


Dave Jackson a écrit :

>Dan,
>
>  Would you be willing to write about 2+ paragraphs on best practices
>for setting up scp for TORQUE which we could put in the online TORQUE
>docs?  I know, if we had the WIKI in place like we promised, we wouldn't
>have to ask! :)  We're trying!
>
>Dave
>  
>

Dan & I told everything, I think :

>On Wed, 2005-10-19 at 11:17 -0400, Daniel Widyono wrote:
>  
>
>>>>I'm having problem with ssh passwordless authentication. I have 16
>>>>machines controlled by torque/maui, and I have setup hostbased
>>>>authentication amongst them, so no password is required when ssh from
>>>>        
>>>>
>>>We use user-based ssh passwordless connections. Users generate key pairs 
>>>with ssh-keygen, and use empty passphrases. id_rsa.pub is then copied as 
>>>authorized_keys in .ssh
>>>
>>>This tip works fine with Torque/MAUI.
>>>      
>>>
>>We do the same, also with Torque/Maui.  We are looking into migrating to
>>hostbased if possible but haven't had time to try it out yet.  I just know
>>that simply asking for hostbased authentication in ssh_config yields problems
>>(which tells me something else needs to be set up).  I also don't want to do
>>it until I've set up all the security controls (ignoring user-based .shosts
>>and .rhosts files, etc.).
>>
>>Tip: we use id_rsa_pbs.pub so as not to interfere with users who have their
>>own ssh keys set up (for external connections).  ssh config says "for all
>>node* connections, use id_rsa_pbs key".
>>
>>Dan W.
>>_______________________________________________
>>    
>>


-- 
Jacques Foury
Ingénieur d'études
Laboratoire de Mathématiques Appliquées de Bordeaux
Université Bordeaux 1




More information about the torqueusers mailing list