[torqueusers] ssh problems
Jacques Foury
Jacques.Foury at math.u-bordeaux1.fr
Wed Oct 19 10:09:50 MDT 2005
Dave Jackson a écrit :
>Dan,
>
> Would you be willing to write about 2+ paragraphs on best practices
>for setting up scp for TORQUE which we could put in the online TORQUE
>docs? I know, if we had the WIKI in place like we promised, we wouldn't
>have to ask! :) We're trying!
>
>Dave
>
>
Dan & I told everything, I think :
>On Wed, 2005-10-19 at 11:17 -0400, Daniel Widyono wrote:
>
>
>>>>I'm having problem with ssh passwordless authentication. I have 16
>>>>machines controlled by torque/maui, and I have setup hostbased
>>>>authentication amongst them, so no password is required when ssh from
>>>>
>>>>
>>>We use user-based ssh passwordless connections. Users generate key pairs
>>>with ssh-keygen, and use empty passphrases. id_rsa.pub is then copied as
>>>authorized_keys in .ssh
>>>
>>>This tip works fine with Torque/MAUI.
>>>
>>>
>>We do the same, also with Torque/Maui. We are looking into migrating to
>>hostbased if possible but haven't had time to try it out yet. I just know
>>that simply asking for hostbased authentication in ssh_config yields problems
>>(which tells me something else needs to be set up). I also don't want to do
>>it until I've set up all the security controls (ignoring user-based .shosts
>>and .rhosts files, etc.).
>>
>>Tip: we use id_rsa_pbs.pub so as not to interfere with users who have their
>>own ssh keys set up (for external connections). ssh config says "for all
>>node* connections, use id_rsa_pbs key".
>>
>>Dan W.
>>_______________________________________________
>>
>>
--
Jacques Foury
Ingénieur d'études
Laboratoire de Mathématiques Appliquées de Bordeaux
Université Bordeaux 1
More information about the torqueusers
mailing list