Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Search - "ssh"
-
today at programming class...
professor: today we will be teaching you about vim and using the terminal and ssh. those who are smart enough to know these may leave the class, but be sure to sign the attendance sheet.
me: *starts packing and stands up and walks up to the front to sign*
me: *turns around*
EVERYBODY WAS LOOKING AT ME. i was the one only who stood up and the professor was also looking at me like "wtf this doesnt happen everyday". and so i walked out of there and im so proud of myself lmfao58 -
*SSH's into VPS*
*Starts doing some general maintainance (updating, checking the logs etc)*
*runs the who command for fun*
*NOTICES THAT THERE"S ANOTHER ACTIVE SESSION*
*FURIOUSLY STARTS TO TRY AND LOOK HOW THAT USER MIGHT HAVE GOTTEN IN (root)*
*Goes one terminal to the left after a few minutes to see if I can use that one as well*
*notices an active and forgotten SSH session to that VPS*
I am stupid.19 -
Had to debug an issue,
*ssh user@domain*
"some wild network connection issue"
*hmm weird.. *
*checks everything again*
*hmm seems alright.. *
*tries again*
*same damn error*
*ssh -v user@domain*
*syntax error thingy on the -v part*
😮
*messages co-worker asking what the fuck could be giving on*
"ey mate check your aliases 😂"
*alias"
"alias ssh="echo {insert network connection issue"*
*loud laughing from the co-worker I messaged*
MOTHERFUCKER 😆15 -
*Dev in his 40's from our counter-part office.
Me: Here's my SSH keys.
Dev: What's this?
Me: SSH keys. Give me access to the repository.
Dev: We don't use any version control here. Let's just use FTP or Remote Desktop and just download the codes.19 -
My Linux machine completely froze up so I used another Linux machine to ssh into it and kill the misbehaving process.12
-
While working from home, my wife overlooked my work Slack chat.
She saw me typing "can you ssh?" and told me "that's a bit rude".
She understood it as "can you shush?".4 -
Can't ssh to my vps at work; hello new hobby project!
(server hosted on vps, http request -> shell -> http response)
Next up is supporting an interactive shell18 -
When I was in high school, the IT had the bright idea to use the same username/password for each machine in our site, and there was this jerk who knowing this, would occasionally SSH into the computers of the other classmates and wget porn mp4s to their home directory to embarrass them, as some sort of weird-ass prank.
So, in order to give him a lesson, I one day had logged in and set a rule on the class' router to forward all port 22 traffic back to his own IP address, and had SSHed into his machine, aliasing wget with a full-screen kiosk mode chrome, followed by a force disable of the USB HID devices.
It might have been less awkward and he might have seen less scared, if it wasn't for the fact that I had also remotely set his machine to maximum volume, and the teacher wasn't in the middle of a lecture. 😏
To this date, his expression is the most precious reaction I have ever seen.9 -
Dear outsourced developers. Don't send me your private SSH key by email. I don't need it, it allows me to access anything else you can access pretending I'm you, and it shows a misunderstanding of how SSH keys work. 🤦🏻♂️14
-
enabling firewall on a vps to secure my docker containers and forgetting to add openssh to allowed list --> ssh blocked 😃🔫24
-
Windows 10 Native SSH client inside CMD is crazy nice, no more putty... given its a windows feature and all!
(Hidden in additional features if any one is interested, will need a reboot to work)17 -
Status update after my first day of my internship:
I realized I know literally nothing about SSH Keys.
Bye.7 -
Setting my ssh banner to an instance of cowsay speaking the navy seal copypasta is one of my best ideas yet6
-
Full stack web dev has no idea what an ssh key is. He is telling me that he can't read the key file, it would be kind of me if I could send him a .txt file instead.
Fuck me man...5 -
Doing Linux server management stuff via ssh with a FUCK 500ms PING IS NOT FUN AT ALL
GET OFF THE FUCKING NETWORK EVERYONE 😤😤😤😤😤5 -
That mini heart attack you get when you've rebooted the server, but it takes longer than normal before it comes up again (and before you can ssh it).2
-
!rant
I've launched a small new project at https://2048.run
It will let you play 2048 (the game) over SSH or Telnet.
Connection Details
ssh play@2048.run
telnet 2048.run
Use username/password "play" to play the game.
Have fun!9 -
So I did a rookie mistake this week. Connected a webapp for a client using Nginx and installed the SSL cert for the site. I decided to activate the firewall of the server because hey security. All was well. Went home feeling like I am the shit.
Next day I find out I can't log in to the server over ssh. Only to find out that I had forgotten to allow SSH through the firewall.
I had basically locked myself out of the server. 😞9 -
Thanks ssh!
Because of you I don't have to leave the bed to run commands on my Linux server(laptop) sitting on my desk.8 -
Cores! (i wish i had them inside this little companion - but no, it's a ssh session to an amd epyc server :)15
-
I've been contracted to work on a website. The bloody thing does not have ssh and the disk space is 500mb.15
-
I just discovered my server being brute forced over SSH by over 25 different IPs per minute. WHAT THE FUCK?! It's not even a public website... Now I installed fail2ban.35
-
Came across: https://krypt.co sounds interesting, because its like an additional 2fa for your ssh key, is locally encrypted, open source, well documented and transparent:
https://krypt.co/docs/security/...
Why is it not much talked about? sounds great so far, but maybe somebody can find the tick? or is using it himself?30 -
>on laptop in kitchen
>music playing on workstation in office
>fiancee asks to turn it off
>ssh workstation -t 'sudo poweroff'
It's like 6ft away... -
A few days after deploying a big important Website into production, I wanted to copy the whole thing including DB back onto our test server for future testing/bug fixing if something comes up. (Last changes were done on production server before going live)
So I opened SSH, removed everything on the test sever aaaaand then I realized I was connected to production...
Took about an hour to get everything up and running again. We didn't tell the client and hoped it would not be noticed.2 -
I wrote this blog post entirely on my phone through doing an SSH on my home server. Why, you ask, well because I don't have my laptop and I am hella bored. Stupid, you say, well I agree.
http://iostreamer.me/chip/2016/...7 -
Why nobody uses public/private key authentication for ssh and disable password auth?
Am I the only one around here doing this?14 -
Win10 shell has ssh? Oh boi, let's try that out.
> help ssh
This command is not supported by the help utility. Try "ssh/?".
> ssh /?
ssh: Could not resolve hostname /?: Name or service not known.
😲🔫9 -
This guy has a weird sense of system security if he thinks an SSH MOTD will keep unauthorised people away. Because you know, setting SSH permissions would be too sensible.12
-
We need to use VPN to ssh into the university's server when on a university WiFi, but not at home.
#ohTheSecurity1 -
Some of my coworkers call connecting with SSH "git bashing", because they use git bash for making ssh connections. 😋
They never understand me when I use the term "SSH". 😔3 -
Installed an SSH server on my desktop so I can use the shell from my laptop...while still sitting in front of my desktop. Keyboard is less than a foot beyond my reach because leaning back, but laptop is in reaching distance.
Still have that SSH server up for mainly the same reason. Decided to also open it to WAN so I can do shit while I'm not home too.4 -
One of our newly-joined junior sysadmin left a pre-production server SSH session open. Being the responsible senior (pun intended) to teach them the value of security of production (or near production, for that matter) systems, I typed in sudo rm --recursive --no-preserve-root --force / on the terminal session (I didn't hit the Enter / Return key) and left it there. The person took longer to return and the screen went to sleep. I went back to my desk and took a backup image of the machine just in case the unexpected happened.
On returning from wherever they had gone, the person hits enter / return to wake the system (they didn't even have a password-on-wake policy set up on the machine). The SSH session was stil there, the machine accepted the command and started working. This person didn't even look at the session and just navigated away elsewhere (probably to get back to work on the script they were working on).
Five minutes passes by, I get the first monitoring alert saying the server is not responding. I hoped that this person would be responsible enough to check the monitoring alerts since they had a SSH session on the machine.
Seven minutes : other dependent services on the machine start complaining that the instance is unreachable.
I assign the monitoring alert to the person of the day. They come running to me saying that they can't reach the instance but the instance is listed on the inventory list. I ask them to show me the specific terminal that ran the rm -rf command. They get the beautiful realization of the day. They freak the hell out to the point that they ask me, "Am I fired?". I reply, "You should probably ask your manager".
Lesson learnt the hard-way. I gave them a good understanding on what happened and explained the implications on what would have happened had this exact same scenario happened outside the office giving access to an outsider. I explained about why people in _our_ domain should care about security above all else.
There was a good 30+ minute downtime of the instance before I admitted that I had a backup and restored it (after the whole lecture). It wasn't critical since the environment was not user-facing and didn't have any critical data.
Since then we've been at this together - warning engineers when they leave their machines open and taking security lecture / sessions / workshops for new recruits (anyone who joins engineering).26 -
Inception.
Today I needed to check something in a remote server: this was the easiest way:
1: teamviewer to my home pc from university
2: started a vm on that machine with vpn connection to my work office
3: rdp to a windows server vm
4: ssh to a vm on our hosting cluster
5: from there, ssh to the server that I needed access to7 -
Installed an SSD in my Linux box. Installed fresh distro, tried to log in via SSH on localhost. Didn't work. Tried like three times, turned off firewalls, restarted ssh servers, nothing.
Looked at username. Typo in username when setting things up. *facepalm*1 -
The moment...
...you work on a script for over an hour via ssh, want to shutdown your notebook and do 'shutdown -h 0' on the remote machine...7 -
Back in my sysadmin days we had an IT zoo to look after. And I mean it... Linux side was allright, but unix.... Most unices were no longer supported. Some of their vendors' companies were already long gone.
There was a distant corner in our estate known to like 2 people only, both have left the company long ago. And one server in that corner went down. It took 2 days to find any info about the device. And connecting to it looked like:
1 ssh to a jumpbox #1
2 ssh to a jumpbox #2
3 ssh to a dmz jumpbox
4 ssh to an aix workload
5 fire up a vnc server
6 open up a vnc client on my workstation, connect to than vnc server [forgot to mention, all ssh connections had to forward a vnc port to my pc]
7 in vnc viewer, open up a terminal
8 ssh to hp-uxes' jumpbox
9 ssh to the problematic hp-ux
.....6 -
Something strange just happened, activated Fail2ban on another server and instantly blocked me when I already had ssh session open >_>
Does macOS terminal keep on sending ssh authentication requests? Or is my OpenVPN that keeps on sending requests.
Why does this keep on happening to me T_T17 -
So, I recently set up fail2ban on one of our new servers. In 4 days we got 16k failed SSH login attempts. Found out that most of them were from South Korea. A few months back one of our competitors failed to have a deal with our organization. Interestingly, they were a South Korean. Lol.2
-
Damn... some dude has his full SSH credentials to his webserver in his published NPM package...
I have to tell him 😅15 -
I hate when I'm in a SSH shell on my phone and all my non-techie friends think I'm programming some elaborate app3
-
It took forever to get SSH access to our office network computers from outside. Me and other coworkers were often told to "just use teamviewer", but we finally managed to get our way.
But bloody incompetents! There is a machine with SSH listening on port 22, user & root login enabled via password on the personal office computer.
"I CBA to setup a private key. It's useless anyways, who's ever gonna hack this computer? Don't be paranoid, a password is enough!"
A little more than 30 minutes later, I added the following to his .bashrc:
alias cat="eject -T && \cat"
alias cp="eject -T && \cp"
alias find="eject -T && \find"
alias grep="eject -T && \grep"
alias ls="eject -T && \ls"
alias mv="eject -T && \mv"
alias nano="eject -T && \nano"
alias rm="eject -T && \rm"
alias rsync="eject -T && \rsync"
alias ssh="eject -T && \ssh"
alias su="eject -T && \su"
alias sudo="eject -T && \sudo"
alias vboxmanage="eject -T && \vboxmanage"
alias vim="eject -T && \vim"
He's still trying to figure out what is happening.5 -
I find it hard to take people serious when they keep telling me to 'ssh into the server' ...like shhhh, not S.S.H7
-
Opened up my SSH port to the internet out of curiosity on a useless box.
Wow..... so, so many requests.15 -
Should’ve posted this after it happened, but it requires a bit of background anyway.
There’s this guy that oversees our OpenStack environment. My team often make jokes and groan about him in private because he’s so overbearing. A few months back, he had to take us to our data center to show us our new racks, and he kept saying stupid stuff like “you break this and it costs me $30,000” as if he owns everything. He’s just... one of THOSE people. Always speaks in such a condescending way. We make jokes that he is our “best friend”.
Our company is shifting most of our products to the cloud in response to the coronavirus (trying to make it an opportunity for “innovation”). This has involved some structural and responsibility changes in our department, and long story short, I’m now heading the OpenStack environment alongside other projects.
This means going through grueling 1-on-1 meetings with our “best friend”. It’s not too bad, I can be pretty patient with people, so I didn’t mind too much at first. Then a few things happened.
1. He sent a shared folder that he owned containing info related to the environments. Several documents were outdated and incomplete, so I downloaded them, corrected them, and then uploaded the documents to my teams file share, as I was supposed to since we now own the projects.
2. Several files were missing, and when I asked about them, he said “Oh, did you refresh the browser?”. I told him no, that I downloaded them locally and republished them to my teams server, because he was supposed to hand everything off to us at once. He says “Well, silly, how are you going to get updates if you’re looking at them locally?” and kind of chuckles at me like I’m stupid.
3. He insists on training me how to remote into one of the servers to check on cluster space, which in itself is fine. I understand others wanting to make sure things will be done right by the people who come after them. But he tells me to download SuperPutty. I tell him, “oh no, that’s alright. I don’t need putty”. He says “oh cool, what tool do you use for ssh?”. I answer him “Just Git. If I want to I can use a CentOs bash terminal too, because we have WSL installed”. He responds “You can’t ssh through Git”.
I was actually a little shocked. I didn’t know if he was serious or not so I was silent for a few seconds before hesitantly saying “yes you can”. He says “this is news to me” and I so I tell him “every single one of our build jobs fetches code from Git with ssh” and he seemed genuinely shocked and surprised by that.... so then it occurs to me to show him that you can ssh in Powershell and that REALLY blew his mind. He would not shut up about it for several minutes. I was amused until it just got annoying.
Needless to say, my team had been previously teasing me about having to work with him, so they found it hilarious when I told them afterwards.8 -
FUCK
FUCKING BULLSHIT!
WHY THE FUCK DID I UPDATE MY RASPBERRY PI! FUCK, I CANT SSH INTO IT ANYMORE! ITS BOOTED AND THE FUCKING PI HOLE PROGRAMM WORKS BUT I CANT ACCESS IT TO SEE IF EVERYTHING IS FUCKING FINDE (which it totally isn't) FFFFFFFF11 -
Since we are posting workspace setups...
Lenovo 100s Chromebook and Raspberry Pi 3 running Arch Linux and an attached hard drive.
SSH and Vim are my friends.14 -
SSH is the most basic thing a web developer should know.
Some people are just lazy to learn something and all they do is give hard time to other people.2 -
The fact that windows doesn't come bundled with a fucking SSH CLI client really pisses me off and I don't know why... Just let me be angry19
-
Me trying to generate a new ssh key after a long while
ssh keygen
ssh key-gen
*DuckDuckGo how to*
Oh!
ssh-keygen5 -
Used teamviewer to login to my other system to ssh into my other system to reboot cz didn't want to walk 5 steps and press the button.1
-
Someone is trying to launch a brute force attack on one of my servers that I set up for an old project. According to the logs, they've tried Jorgee, they've tried directly accessing the MySQL database (with the laziest passwords), and they're now on day 4 of their brute force attack against my SSH server. I'm fairly certain that they won't be getting in (not that there's anything worth getting in the first place), but what's the standard protocol for this? Do I just wait this out, or is there something I can do to break their bot? I have fail2ban enabled, and it is doing its job, but the attacker is changing their IP address with every attack.10
-
- I woke up litle bored.
- Turn on SSH session to linux server
chmod -R 000 /*
Me: uuhh... Now I feel more excited!8 -
Note to my future self:
A 2048Bit SSH key is minimum,
4096Bit is good enough
8182Bit is too much
16364Bit... why do I even bother about this size5 -
I once had to deal with GoDaddy customer support telling me their servers only support putty for SSH.
Well, fuck you! I use Linux and I SSH with a single command in terminal, no doubt putty is great but get your senses straight that putty is not the only way to SSH when you are being customer support for a tech company, don't just fucking recite a phrase list. Besides, they should understand Windows with putty is not the only way to SSH into servers, juicessh via Android, openssh via Linux, etc...
*btw, before you all rant about me buying from GoDaddy, I was lead dev for a startup few years back and they had already bought it from GoDaddy. Ofcourse they also provide free offers along with an order, which often includes email addresses, annoying support, gut-wrenching quality of service access...1 -
I finally found it!
I set up an self-hosted gitlab at our company and for some reason everything worked except for one thing: using git (clone, push, etc) via SSH.
The solution was on the 'common installation problems' page at gitlab, but it took me a long time finding it through Google.
I read through the auth.log and realized the 'git' user was locked. Swapped the '!' for a '*' in the /etc/shadow and now it works. -
Putty remote executuon vulnerability(no patch yet)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to unspecified input validation error when processing data, received from SSH server. A remote attacker can trick the victim to connect to a specially crafted SSH server and execute arbitrary code on the target system with privileges of the current user.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.7 -
Seriously? Microsoft does not support ed25519 SSH keys in neither Azure DevOps nor the actual Azure Virtual Machines? Like seriously? No there has to be a joke. There just ain't no way
It has been in OpenSSH since 2013.
2013.
We're in 2023, if you've forgotten.
10 years ago, OpenSSH implemented this standard.
Did you know what they tell you when you enter your valid Ed25519 SSH key into their system?
Did you know they tell you that "Your SSH key is invalid"?
WHAT DO YOU MEAN INVALID???!?! IT WORKS EVERYWHERE ELSE JUST FINE!!! YOU'RE THE ONE THAT HAS NO FUCKING BRAINS!!!
Composure.
I am calm, I am calm.
I have always. Been. CALM!
There is no one more calm than me....
I guess RSA it is then.
A second SSH key, just for Microsoft.5 -
Do you git clone with ssh or https and why?
I am thinking about using ssh just based on my own research, though you guys may have a your own reasons.10 -
...He hired a shit dev who did the same work in 3 times less than what I asked for.
He's now back crying to fix his Fuck up.
You ask how I know he is shit. He SSH-ed into the server. Worked directly off the production files. Worst of all, he installed phpmyadmin, changed the db structure without even writing a fucking migration !!!
How the hell am I supposed to know what he changed!! It's gonna be a long night 😥5 -
Don't question my infrastructure setup. I ssh into server A because it's the only one available from the outside. From there i ssh into server B to ssh into server C. C functions as a router and allows me to ssh into D, E, F and G. I could go from A to C directly, but OCD.1
-
Check out this amazing project that won the 2022 Summer CodeDay challenge.
It's a different take on whack-a-mole that's multiplayer using SSH
https://github.com/pranavnt/whack4 -
I gave this so called web developer username and password to ssh into our server. This is his reply:
"Hey we tried to log into your server. We are getting permission error. Please fix that"
Me: Sure, can you tell me how are you trying to connect?
"We tried to ssh like this: ssh root@xxx.com"
Me (in my mind): WHY THE FUCK ARE YOU USING ROOT FOR!?!9 -
TIL shutting down a Linux machine with systemd with a delay will block new SSH sessions until the shutdown/restart happened.8
-
I got denied work from home status on black friday because I did not have RDP access for our solution.
let 👏 me 👏 use 👏 s 👏 s 👏 h 👏4 -
Lots of IPs tried accessing my Raspberry Pi's SSH. Dumb bots, trying to brute-force a key-auth-only SSH server...
On a relevant note, I love fail2ban!12 -
Have been using redis for my new system and wanted to try some gui, so I stumbled on "redis desktop manager", it supports ssh tunnels, privatekeys and more, great isn't it?
BUT IT SAVES YOUR FUCKING PLAINTEXT PASSWORD AND PATH TO YOUR PRIVATE KEY IN %USER%\.rdm\connections.json
WHAT THE FUCK, fucking ask that password during connection, don't fucking save it in plaintext and give an attacker literally the path to my key, wanted to PR it, but fuck c++, probably thats why he doesnt have it, because hes just using some library, so he doesn't have to fuck with the actual implementation of it.2 -
Hey, looks like some employee of this hosting company failed to 750 his home directory and 640 the files...
I was SSHing around on our hosting account when I slipped into his home direcory where at least two(!) SSH public keys of his admin account for the server were readable!
Being an honest guy, I had to call them...
It's fixed now.2 -
If you want to install, configure, and dedicate resources to fail2ban, knock yourself out, but putting these options in your sshd_config alone will save you mountains of headache:
PermitRootLogin no
PasswordAuthentication no7 -
Today’s DevOps public service announcement... don’t test your server provisioning scripts locally. Especially when this gem is in there:
rm -f ~/.ssh/id_rsa
echo ‘vault secret/ssh_key’ > ~/.ssh/id_rsa
Well, I no longer have my key, but the script works! I’m sitting with a very locked down server key6 -
OpenSSH 8.2 is out. This release removes support for the ssh-rsa key algorithm. The better alternatives include:
1. RSA SHA-2 signature algorithms rsa-sha2-256/512. These algorithms have the advantage of using the same key type as "ssh-rsa" but use the safe SHA-2 hash algorithms (now used by default if the client and server support them).
2. The ssh-ed25519 signature algorithm.
3. ECDSA algorithms: ecdsa-sha2-nistp256/384/521.
In this release, support for FIDO/U2F hardware tokens. Also noteworthy, a future release of OpenSSH will enable UpdateHostKeys by default to allow the client to automatically migrate to better algorithms.19 -
Copy my private ssh key to multiple machines so I only have to configure one key in github, gitlab, bitbucket etc.3
-
!rant
I am a Windows user and have been using Mac for last 3 years. I knew SSH for a while, but used it just to connect servers when no other options were available.
Today I just found that I can connect to my Mac from my Android phone using SSH and can run any command I want. I am now running builds and deploying code from my phone since then.
I don't know why I am feeling this happy 😁1 -
Lesson learned the hard way: Remember your SSH Ports or write them down...
On the bright side of things, i had backups this time! Tyy DigitalOcean :)8 -
So @Linux gave me a website to check which happens to have a tutorial on how to close ssh session after x inactive minutes, and now every time I'm back to the terminal I find my self out T_T
but it is a good life savior if I forgot my session on work computer lol11 -
So one day I sat in our break hall at school plonking away in my ssh terminal when suddenly someone walks behind me and screams HACKEERRR! When he sees that i start turning around he started sprinting away from me and for 2 weeks he would be extremely scared of me. Thant was probably the weirdest day in my life.1
-
Let's talk a bit about CA-based SSH and TOFU, because this is really why I hate the guts out of how SSH works by default (TOFU) and why I'm amazed that so few people even know about certificate-based SSH.
So for a while now I've been ogling CA-based SSH to solve the issues with key distribution and replacement. Because SSH does 2-way verification, this is relevant to both the host key (which changes on e.g. reinstallation) and user keys (ever replaced one? Yeah that's the problem).
So in my own network I've signed all my devices' host keys a few days ago (user keys will come later). And it works great! Except... Because I wanted to "do it right straight away" I signed only the ED25519 keys on each host, because IMO that's what all the keys should be using. My user keys use it, and among others the host keys use it too. But not by default, which brings me back to this error message.
If you look closely you'd find that the host key did not actually change. That host hasn't been replaced. What has been replaced however is the key this client got initially (i.e. TOFU at work) and the key it's being presented now. The key it's comparing against is ECDSA, which is one of the host key types you'd find in /etc/ssh. But RSA is the default for user keys so God knows why that one is being served... Anyway, the SSH servers apparently prefer signed keys, so what is being served now is an ED25519 key. And TOFU breaks and generates this atrocity of a warning.
This is peak TOFU at its worst really, and with the CA now replacing it I can't help but think that this is TOFU's last scream into the void, a climax of how terrible it is. Use CA's everyone, it's so much better than this default dumpster fire doing its thing.
PS: yes I know how to solve it. Remove .ssh/known_hosts and put the CA as a known host there instead. This is just to illustrate a point.
Also if you're interested in learning about CA-based SSH, check out https://ibug.io/blog/2019/... and https://dmuth.org/ssh-at-scale-cas-... - these really helped me out when I started deploying the CA-based authentication model.19 -
Accidentally killed the ssh deamon on the prod server. I meant to kill my local sshd but confused the terminal tabs :#
-
Does changing default SSH port really make server more secure? Most of scan apps (eg. Nmap) will find it anyway, won't they?5
-
I was at my study once where I had to start a node app on a server I couldn't reach because SSH was bound to a port blocked by the network. SSH'd into my vps and from that vps, ssh'd into that box 😁 worked like a charm!
-
Next week, I'll be with a new company - this week I'm scouring the corporate laptop for all the places I stashed personal SSH keys and AWS credentials.1
-
A technician to me: You need to check the ssh server of this machine, I can't manage to login with the MAC address...
Me: ROFLMAO!1 -
I've just checked my server's auth logs and my god that's a lot of failed ssh login attempts.
I think I'll install an ssh honeypot to waste these peoples time...8 -
Just discover that I can send "echo bomb" to one of my fellow students trough SSH with the write command.
Then I discover the wall command to send messages to every connected user. Not sure if I am brave enough or if I am going to be banned from our network if I do that 😅5 -
Simultaneously opening ssh sessions to test and production system, finally stopping the application in the factory.
It was me. -
I set up unRAID on my server this weekend, and only just checked my logs to see if anything weird was happening. Turns out 2 IPs have been trying to brute-force the SSH password all weekend. I quickly installed the DenyHosts plugin and reminded myself to always use a strong password, which luckily I did.
A bit later now, and one of the 2 gave up, the other one keeps trying but of course the connection is refused. Just keep trying buddy :P6 -
After many teeth clenching failed deployment to production attempts and finally realizing I forgot didn't add ssh keys
-
Today, in the course of my job, I said...
FFS. I HATE WINDOWS.
It has begun.
Took me five minutes to ssh into the Linux EC2 and get the Jenkins agent installed, configured, and running. Half a fucking hour for Windows Server 2012.
1) Can't ssh to it, so I connect via AWS console... Which means I have to install MS Remote Desktop. WHATEVER. FINE. It's not like ssh is quick and easy or anything.
2) Can't just use the command line, run the .jar &, cntl-z, and bg then log off. Noooo. I have to install the unpacked binaries as a fucking SERVICE. FINE. WHATEVER.
I'm so glad we have a Windows guy that does most of this shit. I can't stand it.1 -
> attempt to change password on laptop
> try sudoing to test if it changed
> it hasn't
> assume i was ssh'd into my server
> try the password, along with like 10 other permutations of it
> get ip-banned from ssh to my server :/
> try an online ssh client
> use old password
> it works!
> so what did i change?3 -
When company gave me a SSH I am a noob I have a filezilla what I do is delete all temp files and clear log files
Because the log file size goes 1gb After next day all are looking weird
Senior developer:wtf are you doing yesterday
Me: delete all the tmp files and log files 😂😂20 -
How bad is it for a fortune 500 company to open port 22 over the internet for all its linux servers?? Today, I reported this to my boss and he said "it won't be a problem, no one can login without a password".8
-
My fucking internet went off and was so slow that even ssh resetted me, fucking thanks. And it was the same typical pattern again: turn off, turn on, kbps speed, wait ~30/50 minutes and then again fullspeed, fucking cuntbags stop fucking fingerbanging the ethernet ports - I need to get shit done.1
-
FINALLY, all my dreams have come true, now I can totally say I don't really miss Linux all that much (although I work with Linux all the time, as all my VMs are on Ubuntu).
Obviously, Microsoft has a port of the ssh client and server on windows.28 -
I need someone who knows how to use 'ssh', to help me make a mockery for my game.
Just need to ask a few questions20 -
I FUCKING love it when I try to understand how to simply fucking connect to my server via SSH, and seeing tutorials from cocksuckers that just screen some form fields without telling where I can find them, and juping from steps to steps like I'm in your fucking head
CAN'T YOU WRITE SOMETHING THAT WOULD MAKE SENSE, YOU FUCKING MORON???3 -
So, I just setup a honeypot on my freshly installed Mint Laptop.
So many SSH connections, it's absolutely unbelievable. Can someone recommend me a good honeypot? I have only the SSH port monitored at the moment.8 -
*ssh into server*
*runs 'sudo systemctl start docker'*
*ssh into server again*
> Permission denied
How docker? How are you destroying the ssh servers auth?9 -
While sitting in a train (5 hours trip) I really want to code something, unfortunately I dont have my laptop with me, so i just connected with ssh from my phone to my ubuntu vps, created some project via npm and use android app to edit the code. It is not perfect but works. Someone else code like that?3
-
neat, ansible control server on my phone, now I can transfer my playbooks and ssh keys and have it execute things on the go.5
-
techie 1 : hey, can you give me access to X?
techie 2 : the credentials should be in the password manager repository
t1 : oh, but I don't have access to the password manager
t2 : I see your key A1B2C3D4 listed in the recipients of the file
t1 : but I lost that key :(
t2 : okay, give me your new key then.
t1 : I have my personal key uploaded to my server
t1 : can you try fetching it?
t1 : it should work with web key directory ( WKD )
t2 : okay
t2 : no record according to https://keyserver.ubuntu.com
t1 : the keyserver is personal-domain.com
t1 : try this `gpg --no-default-keyring --keyring /tmp/gpg-$$ --auto-key-locate clear,wkd --locate-keys username@personal-domain.com`
t2 : that didn't work. apparently some problem with my dirmgr `Looking for drmgr ...` and it quit
t1 : do you have `dirmngr` installed?
t2 : I have it installed `dirmngr is already the newest version (2.2.27-2)`
t2 : `gpg: waiting for the dirmngr to come up ... (5)` . this is the problem. I guess
t1 : maybe your gpg agent is stuck between states.
t1 : I don't recall the command to restart the GPG agent, but restarting the agent should probably fix it.
t1 : `gpg-connect-agent reloadagent /bye`
source : https://superuser.com/a/1183544
t1 : *uploads ASCII-armored key file*
t1 : but please don't use this permanently; this is a temporary key
t2 : ok
t2 : *uploads signed password file*
t1 : thanks
t2 : cool
*5 minutes later*
t1 : hey, I have forgotten the password to the key I sent you :(
t2 : okay
...
t2 : fall back to SSH public key encryption?
t1 : is that even possible?
t2 : Stack Overflow says its possible
t1 : * does a web search too *
t1 : source?
t2 : https://superuser.com/questions/...
t2 : lets try it out
t1 : okay
t2 : is this your key? *sends link to gitlab.com/username.keys*
t1 : yes, please use the ED25519 key.
t1 : the second one is my old 4096-bit RSA key...
t1 : which I lost
...
t1 : wait, you can't use the ED25519 key
t2 : why not?
t1 : apparently, ED25519 key is not supported
t1 : I was trying out the steps from the answer and I hit this error :
`do_convert_to_pkcs8: unsupported key type ED25519`
t2 : :facepalm: now what
t1 : :shrug:
...
t1 : *uploads ASCII-armored key file*
t1 : I'm sure of the password for this key
t1 : I use it everyday
t2 : *uploads signed password file*
*1 minute later*
t1 : finally... I have decrypted the file and gotten the password.
t1 : now attempting to login
t1 : I'm in!
...
t2 : I think this should be in an XKCD joke
t2 : Two tech guys sharing password.
t1 : I know a better place for it - devRant.com
t1 : if you haven't been there before; don't go there now.
t1 : go on a Friday evening; by the time you get out of it, it'll be Monday.
t1 : and you'll thank me for a _weekend well spent_
t2 : hehe.. okay.8 -
Here at the client site everyone uses Windows 7, since this is not an IT firm. They make jewellery. So I don't blame them.
The problem is their in house dev team are also forced to use Windows.
Today someone from their dev team was with me for a new project. Their senior guy sent us a mail mentioning that the project code is on AWS EC2 instance and we will have to SSH to see it.
I checked the code on my MacBook with SSH and copied it to local using SCP. The dev guy was seeing it in amazement. I asked, what's it?
He just asked, "You don't have to use PUTTY" 😮
I smirked 😏3 -
Sooooo.....
I just spend roughly 5 hours trying to get a Laravel Homestead up and running. Constantly jumping from one error to the other, getting nowhere.
Turns out that,
...
...
I NEVER FUCKING GENERATED A BLOODY SSH KEY
ARE YOU FUCKING KIDDING ME
AN ENTIRE DAY WASTED
JESUS CHRIST
I swear, I'm way too junior for like 95% of this shit....5 -
I have to say mosh. For those that don't know, it's an extension on SSH for intermittent connections e.g. when on mobile data. I live in an area with several "black spots" and dodgy connections, so I find it really useful.
http://mosh.org1 -
My biggest regret is underestimating what my school's server would log and what my teachers could see me do.
SSH is just way to powerful...4 -
just sent an id_rsa private key file to our corporate Linux Administrator and he asked me to send him the private key in .ppk format. ==)))9
-
Anybody else want to DDoS whole Russia and China Hosting Companys for there god damn dead Servers?
Always get a lot of spoofing and ssh login try's from there.
fail2ban FTW!8 -
Every time I see a client open ssh or rdp to the world when the servers sit behind a vpn, I die a little inside.4
-
When I started ssh'ing into remote linux machines I would wonder why a lot of the programs I started wouldn't keep running after I logged out... :facepalm:6
-
I work in a place where I don't have ssh access to the web server. No proper use of composer. I have to pull packages to my local machine and upload through ftp.3
-
using ssh over terrible internet speeds, spends all the time trying to figure out the cursor position3
-
I just fucked myself big time with iptable rules and blocked all incoming connections to my WiFi-AP. No SSH, can't go back, time for a factory-reset...
-
Had some problems with my Raspberry Pi (connected via SSH). Decided to restart it. Now it refuses connection. And I don't have physical access to it at the moment.
Fuck. This. Shit.2 -
OpenSuse'e sarcasm is BRILLIANT!
```
~$ ssh 192.168.122.43 -l root
Last login: Thu Feb 2 19:12:45 2023 from 192.168.122.1
Have a lot of fun...
localhost:~ #
```2 -
Plan plan and then plan again
Especially on a hardened server in an off-site facility.
If you fuck up your SSH then you will be in trouble.4 -
Sunday guilt: Do I ssh in and finish the testing I didnt mange Friday? Pro-Tip: never set up your work VPN.3
-
That facepalm moment when you input shutdown now in your own terminal instead of the one in the ssh session.😑3
-
Warning long rambling story cause sleep deprivation
I never really bothered with ssh outside of using putty to remote into my servers and rpi's from my desktop to run updates, install something, or whatever else.
But today I was on a call with my cousin bored cause she was just rambling, so I opened vscode to clean my install of unnecessary extensions I installed and haven't used more than once or twice.
I saw Remote - SSH and as I was bored listening to a teenager complain about high school just like I used to (lol) and responding when she asked me something. I scrolled through the page, then the documentation just casually skimming the text
I setup an ssh key on an rpi I threw manjaro arm following the instructions on their tips and tricks page
I then moved the key to my desktop using winscp (cause lazy)
leading to having a minor hicup of rsa not being an accepted keytype (thanks 'your favorite search engine' for the help)
Finally, I was able to connect using the private key
at this point my cousin went to bed cause she has school tomorrow. But I was still doing stuff with ssh, I created a new ssh connection in VSCode, but had to go to the documentation to figure out how to make it use my fancy new key file, not hard took 30 seconds of looking to get it working.
Now that I was in, I moved to my development folder, created a folder for PiHole, created a compose yml, created a pihole-data folder.
I opened the yml and pasted in a compose from dockerhub.
at this point I thought 'i can't just run this from terminal can I'. and Obviously it worked cause there's literally no reason it wouldn't I'm just stupid to think it might not.
So I created folders and files on a remote system, launched a docker container, checked for package updates after on a linux machine. All from VS-Code on a windows machine.
I know this is simple for some people, i know some people are like 'where's the interesting part'. but ehhh I thought it was cool to get it setup, I now really regret not getting into ssh sooner, and I'm definitely going to uninstall vscode on all my smaller graphical VM's in favor of doing this. and this will definitely help with my headless vm's.
I also will have to thank my cousin, might not have done this if I wasn't stuck at my computer on messenger call with her lol
I'm gonna go to bed now, But I feel accomplished for the first time in a while even if it's for something so simple as setting up anssh key for the first time3 -
How do you keep track of your servers? their credentials/ssh keys, opened ports, services, IP, domain etc?15
-
So, my network security faculty thinks s/mime is secure multipurpose internet message encryption. And ssh is secure socket header.
Time to leave the class. 😭1 -
When you are bored and you don't know what to do :D. Starts an SSH Connection in your Private Home Server to change the settings of all installed Service7
-
Guys has this happened with anyone ..my older aws ec2 instance just vanished from my console but I can still ssh into it, how do I manage it for security groups and other things..?9
-
That moment when you're connected to a server to adapt a setting in the SSH service config and it errors into your face when you attempt to reload it.
Schrödinger's SHell 😰1 -
I'm trying to install my SSH Server and nothing works. I think i've seen every SSH Stackoverflow site and i'm still too dumb :C27
-
I'm a bit tired. Flushed an ISO to sda. My laptop now asks if I want to use try or uninstall xubuntu on boot. Before slowly seeing my complete gui disappearing and had by luck still a terminal open - I could save ssh keys. Dammit. Was switching laptop anyway.
Dammit! I can't believe I did that.4 -
!rant
I just realised my VPS ssh private key was in my servers web root for the last 4 months. Luckily nobody found it (hopefully).2 -
Changed the .bashrc of my headless server incorrectly, causing me to get kicked out of my ssh session as soon as I connected… Thank God for scp (learned something new today as well 😂)
-
And this happened today:
While on ssh session, this guy restarted network manager. According to him "his Facebook page wasn't showing him recent feeds". -
Just opened a terminal window on my PC through SSH with a reminder to write two reminder scripts. Reminder-ception?
-
Is it good or bad that I forgot to push an critical buggfix to production just before I went home?
Hopefully I can update from home (think one of our servers has an backup of the ssh keys)3 -
due to some error on GCP, my and friend got locked out of a prod server over ssh.
And the fucking admin was not giving us privileges to do it through serial port, why you ask cause submitting keys from dashboard was not working.
Later, found out google runs a startup script from startup-script metadata tag.
It felt like showing a middle finger to the admin and google -
One day I helped another teacher with setting up his backend with the currently running Nginx reverse-proxy, peace of cake right?
Then I found out the only person with ssh access was not available, OK then just reset the root password and we're ready to go.
After going through that we vim'd into authorized_keys with the web cli, added his pub key and tried to ssh, no luck. While verifying the key we found out that the web cli had not parsed the key properly and basically fucked up the file entirely.
After some back and forth and trying everything we became grumpy, different browsers didn't help either and even caps lock was inverted for some reason. Eventually I executed plan B and vim'd into the ssh daemon's settings to enable root login and activate password authentication. After all that we could finally use ssh to setup the server.
What an adventure that was 😅3 -
OMG DOES WATSON SUCK !!! I JUST WANT TO SSH IN AND DROP SOME FILES AND START THEM RUNNING DAMN IT NOT MESS WITH NOTEBOOKS !4
-
trying to do a git merge by command line, because my coworker insists on developing directly on the staging server using ssh1
-
!!THE WORLD IS COMING APART!!
How in gods name did Putty manage to map a SSH tunnel to port 83306 and MySQL Workbench just didn't care and worked?!?!3 -
fellow dev thought he was being clever, hiding his private ssh keys inside image files on a public web server...2
-
Rant!
Shifted to new office few days back.
Just had to put up with the shitty intermittent internet connection.
SSH failing and coming out for every 50 secs.
Trying to take Mongo Dump and restore for the past 2 hours. Finally! ufff.
When the network is disconnected SSH gets disconnected. Fine. Acceptable. Again, when the network gets connected, it should start from the same place right ? Dumb Enough. But i wanted that today.2 -
Me: your SSH wrapper is breaking how Ansible works
Ops: try to use Ansible in another way
Me: your SSH wrapper is breaking how Ansible works
Ops: try to use Ansible in another way
< This goes on for two weeks >
Me: can we please not use wrapper
Ops: we use it to manage ssh keys
Me: this is breaking basic ssh functionality
Ops: OK we are setting up a weird convoluted way so you can run your Ansible playbooks.
Me: ... < doing "it is at least something" dance > -
Was LibSSH created by noobs? "Let me in bro, the other guy already checked my ID." https://nakedsecurity.sophos.com/20...12
-
Switching from Linux to Windows on my personal production server... because sometimes logging into RDP is so much easier than SSH.3
-
When I thought things couldn't get crazier that my vmware to win chrome mess.....
Doing an upgrade today when I have to VPN in from my mac to access a Web based secret server to get onto another VPN so I can RDP onto a Windows bastion host to then RDP to client windows servers within the RDP and from those hosts need to use putty to ssh into Linux servers to do the admin activities......
Now I'm obviously all for security but seriously VPN to RDP to RDP to ssh is just a bit mental......
But all of the SSL certs between each env is self signed anyhow......2 -
https://mosh.org, together with GNU Screen running on the remote, is just the best when I'm trying to fix something on my server while I'm in the fucking forest with bad reception that would cause normal ssh sessions to kill themselves all the time
-
Would you say it's naive to assume that a Node.js consultant knows what 2FA is, how to clone a repo over SSH and how a .env file works?3
-
Logged into the vm as root. Saw that there were some security updates pending. Ran apt-get upgrade. Lost all ssh access to the vm. FML6
-
In today's episode of "how i got almost to the point of insanity for hours and the sudden realization and relief"
When you have ssh error saying your private key is an invalid format in your CI, you probably just missed an EOL.
MCP says EOL.
Fucking EOL
That is the realization i made after half a day wasting on debugging this.4 -
Thanks ssh, reaaalll helpful message you got there :D
I get that you very rarely mistype ssh commands but come on4 -
Ok..now its up to you guys. I couldnt find any answer on google that could help me..
SSH : is that only like a dos or batch command line (simply script language) , to go with?
I see often the "$" sign , for what does it stand for?14 -
Does anyone else here use PuTTY to SSH into a linux server and then create a tunnel into a Windows PC on that local network for remote desktop to pass through.5
-
Just a quick follow up. I told you guys after rebooting my server by accident, I'll color in the terminals for my ssh connections.
Normal terminal in white. With the code to do it. Just a shell script with the name ssh earlier in the path than the actual ssh. That was the only solution that didn't fuck my auto-completion. compdef was somehow useless. But it is simple.
For some reason I had to hardcode the return color to white. Alacritty was not happy with just a no-color code. But whatever. Super useful. I won't accidentally restart non-host computers now.
Planning on extending this to have different colors according to the host. Like my homelab could be green. Live servers would be red. Dev servers blue. But that's for the future.
Just wanted to share my little improvement that will make my computing saver.8 -
Why is my the fingerprint for my public ssh-key seen not as a sha256-fingerprint?
Left: Windows
Right: Raspberry3 -
One more before I go to bed,
Once I spent hours setting up shit on one of my ubuntu server via SSH and realised I'm on the wrong server later on.1 -
I hate IT. I hate just about anything that relates to computers.
It's all nothing but debugging.
SSH from linux, works great.
SSH from windows, even with plain password, permission denied. Blaah...
Why this shit won't just work?8 -
I'm about to embark on an AWS security journey... Gonna find out who has global ssh access open, who hasnt been rotating their master keys, who has lambda connected to an IGW, who has VPC's with a VPN that also have an open SSH machine to the world.
Anything else i should look for?6 -
Fuck ssh. It does 4 things at once and i couldn't get it to do one. I have some pi's and want a shared directory on each of them. On a server i created a user for that and mounted its home directory on a pi, it worked. I did some lockdowns (no shell, only sftp allowed, login only via keyfile), but i was still able to mount it on boot.
Now i had to migrate this setup to another server. It took me a while copying all the configuration etc. All i got for that was a error-message. I figured out the users home-directory had to be owned be root, fixed that, got another error message. Somehow scp didn't use sftp but the login shell which is /usr/sbin/nologin. That made scp (and sshfs) fail, even though it perfectly works with the other server.
I gave up and removed all the setup. I'll find another distributed filesystem for that (but not samba or nfs, those are way to complicated). Those are the setbacks that depress me. -
Had to change my password on my bitbucket cause a former employer was adding ssh keys.
Sorry pal, email notifications are rats -
Neovim,
I can code, git, ssh, reddit, mailbox, Spotify all at the same window.
With coc-explorer you can switch between your buffer just like VSCode4 -
console(config)#ip ssh port 22
InCorrect Port-Number : Port-Number Should be in the Range <1025 - 65535>
console(config)#4 -
People who freak out and think they have been hacked when you send a message to them on the prod server using the wall command should not be allowed SSH access.
-
When I do SSH to a remote server, how can I show git branch name?
When I SSH it shows me this:
admin@123.456.789.555:/home/some_folder$
Can I configure it to show something like oh-my-zsh that shows me the current Git branch I am pointed to?
This is my local iTerm zsh default theme:
some_folder git:(feature/some_branch_name)18 -
An ex client told me that her new software house wants the private key to access her virtual machine. The private key.
I explained that she must send me a public key, but I didn't tell her that new guys she is working with don't know what are doing. Now I feel regret. -
Haven't used ssh in a while. Just spent 30 minutes figuring out why my Pi was rejecting my password.
Turns out I wrote ssh <ip> instead of ssh pi@<ip>7 -
I've just fucked up my ssh config on one of my arch VM... Had to destroy it and make a new one ...
Fml -
Being asked if you have access to the archaic raid array machine in the corner of the data-centre.
Step 1. Log-in in front of the person asking
Step 2. Deleting ssh key from the .ssh/authorized_keys
Step 3. Replying "Nope I know nothing of it" -
have a bash alias for easily connecting to raspberry pi
share same aliases file with raspberry pi for ease of use
ssh to raspberrypi
forget about it and try ssh again
realize what i am doing
from pi@raspberrypi to pi@raspberrypi
sshception1 -
I usually hate Microsoft but they've gotten me positively surprised several times lately. I can run an SSH server and Redis just like that!
-
This Dev I won't name, Ashley Martins, chown'd the /etc directory rather than her own config, and we didn't have console access, so was unable to ssh in.4
-
Note to self: keep not trusting online tutorials and ALWAYS, A.L.W.A.Y.S take them with a grain of salt.
Now why do you fine lads think `nmcli networking off && nmcli networking on` over ssh is a bad idea? And how to quickly make it suitable for over-ssh-execution? Let's see who knows shell! [HINT: see tags for an almost-answer]
... when people not sure what shell characters mean are writing tutorials... FUCK!12 -
How many secret SSH keys has Apple already captured with their shiny new iCloud Clipboard Sync on Sierra?4
-
client: "can you build out a staging server for us? here's all the code, everything you need"
me: "awesome, looking good, i have almost everything i need, just give me the credentials for the server, and I'll get started installing all the infrastructure"
client: "ok, try these!"
me: "doesn't work"
client: "this one?"
me: "doesn't work..."
client: "how about this one?"
me: "STILL NOT WORKING!!!"
imagine you want someone to do stuff on your server and you don't even know the root SSH password.... smh
why is this always a problem, use fucking 1password or something its 40 bucks a year, secure, and you can organize alllll your passwords. don't be a fucking boomer and write them on a piece of paper, or worse, apparently like my client, never know it or have it in the first place.5 -
After doubting Deepin OS for 4 days and slangs to Windows, it turns out, ISP is blocking the port 22, which is why I was not able to communicate to my instance through SSH.
One of the major Cellular company and Fastest 4G in the whole country, 'Idea', is blocking the vital port 22. The same company promoted it's Internet service through chain of adv. calling it's Cellular Internet network, "Idea Internet Network (IIN)". Only to make it sound like IIT, IIMs ( elite indian colleges). Check on YouTube, IIN, if available3 -
I've created instructions for myself the next time I encounter cpanel.
rallen@rallen ~ $ cheat cpanel
#SSH'ing into the fucking cpanel
#Figure out combination of 5 usernames and passwords given by client to log in.
#Pray that WHM isn't involved.
#Ignore several ssl warnings and cancel several .htaccess password prompts.
#Call in to enable that shit.
#Wait no less than 15 minutes on hold.
#SSH enabled.
#Create public private key pair.
#Notice the ppk conversion for windows 'devs'. Sigh.
#Copy key pair to ~/.ssh/
#chmod that shit to 600.
#Note for the user name it's not anything the clients given you or what you've named the key. Look in the cpanel for the /home/<user> directory.
ssh -i ~/.ssh/key <user>@<dedicatedip> -
You know what is THE stupidest and most fucking anoying thing ever? (And partially my fault) I recently reinstalled Ubuntu on my device, meaning I lost my SSH keys. Today I wanted to make a quick change to a website hosted on digitalocean. Now as per good practice I had disabled the root account and the only way to log in is via SSH or using their web terminal. Obviously I couldn't use SSH so I had no choice but their awful web terminal. Not only is it laggy as balls but it would keep hanging up meaning I had to close it and start again. As if that wasnt fucking frustrating enough all I wanted to do was add my new SSH so I could just use my terminal. But NO you can't fucking paste anything into their terminal! Like what the fuck? How can you not have this basic functionality in 2017???3
-
Holy shit.
This was an effort to combine Gitlab, Github and Bitbucket with VSCode and git SSH authentication. SSH agent doesn't work, configured, added some code in .bashrc, seems fine. Then there was still ssh-askpass missing.
"ssh_askpass: exec(/usr/bin/ssh-askpass): No such file or directory"
WTF VSCode? Why do I need this crap?
However, installed it. Nevertheless, I'm still asked for my password every time when I synchronize using the GUI. Thank God everything was in docker containers/images. So at least there is no garbage left after every failed attempt.
I don't know how, but I finally made it that at least synchronization using the terminal works without a password.
Took me five hours to do this shit.
Now I just report the bug to Microsoft and then straight to McDonalds. I'm starving.1 -
Hey their did anybody notice unauthorized login attempt over ssh. Means I have a demo digitalocean droplet I just left it for some logs their isn't any imp data over but when I try to ssh back that machine after an interval of max 5 to 6 days after login message displayed their were 9876 login attempts were made, then I directly go to ssh log over secure log file get all those IP, found out max were from China some from France and all are doing random login names like user, admin etc etc and with random password over multiple ports even non standard one, is anyone finds this happening10
-
The only way I can edit Puppet config files is by git. And the only way I can git pull/push/commit/etc is generating a ssh key with a private key and give my public key to my supervisor to the git server (wherever that may be).
Because I'm on Windows 10 and screwed up my installers, I completely forgot to backup my ssh keys before resetting it. FML2 -
Writing automation tools using SSH feels so backwards... Thank God for paramiko and click!
Also GPT4 is a better documentation than Paramiko's. Especially for edge cases!1 -
So i'm trying to upload a file to an SSH server using node. First I try the obvious putFile method provided by the obvious node-ssh package. On any other server this would work fine but this server doesn't have sftp installed so that doesn't work.
OK, so next I learn how scp works (it runs the command "scp -t" on the remote server, and sends to stdin a command like "C0666 1234 file.txt" and then sends the contents of the file) and I write some javascript code to do this. It's pretty finicky, the first few tries I forget to close the stream right or detect the program finishing. I add some logging and that helps me figure out what the problem is, and finally I get it to not output any errors.
So I log into the server and check and the file isn't there. I try again several times, file still isn't there. I try running scp -t manually on the server, typing in exactly what my program is sending, and it works. This goes on for a while until I realize that I've been sending a file to one server and logging into a different server to check if the file was sent. grrr6 -
The sad moment when you realise that you're locked out of your VPS without your pc, because you forgot to add your phone's ssh key to the list and password login is disabled :(
Hope everything keeps working until I get back 😱2 -
I got a very low power Netbook lately for basically no money.
I thought about using it for some server monitoring / server access via ssh console.
Which Linux distros would you recommend for such a use case. Tried Something like core-os and Debian(lxde) yet but wasn't very satisfied with both options. Both could not display the battery capacity and Debian didn't detect the Intel WiFi.
The Netbook has 512mb of ram which should be fine for a lightweight gui and more than enough for a ssh connection 😅
Thanks a lot for the recommendations :)12 -
It seems like now I can ssh into a Windows machine and use the glorious cmd!
- no (gnu/)linux user1 -
I have received this email and I just can't believe how they are thinking!
Microsoft asks TFS git users to change their ssh git URL!
And finally the stunning statement, thank you for using ssh! -
/me trying to automate stuff with fancy tools
colleague: you are going to fast. We want to have everything in control by hand (ssh -> cron * 1000 servers)3 -
TIFU by giving an inaccurate shell location when executing "chsh" on my storage server.
So, long story short, I can't SSH into my own damn storage server.1 -
Does anyone know a free cross-platform SSH app, that syncs everything from your PC to your phone, and supports SSH keys?14
-
`load pubkey "/Users/karunamon/.ssh/id_rsa": invalid format`
The fuck? I've been using this keyfile for ages. And that's the private key, not the public key.
Maybe I'll try converting it to a different format.
(20 minutes of ssh-keygen command attempts)
Same error. I don't freaking get it. It works. I mean, I know my public key is..
(public key is actually completely mangled with newlines everywhere)
..yknow what, my fault, but you could have at least given me the public key filename, ya jerk.1 -
Setup SSH keys from your Dev machine to every development environment then configure a putty profile to use that key with your login.
-
'net-ssh 4.1.0 conflicts with net-ssh (< 4.0, >= 2.7)'
Uninstalls net-e 4.1.0, runs command again
'Could not find 'net-ssh' (= 4.1.0) - did find: [net-ssh-3.2.0]'
Sometimes I just think dependency management was a mistake.1 -
Fuck TeamViewer.
I've been using it to control my home PC desktop from remote for a few years now (booted PC via Wake-On-LAN, done stuff, shutdown). I started using Chrome Remote Desktop a while ago too, but its ports are blocked at work, so I had to rely on TV some more.
Recently TV more often told me that I was offline (but I wasn't) and more importantly they started blocking my connections due to "commercial usage" (it's my private shit, yo), so now I've moved on to RDP via SSH.
That really makes me feel relieved as I wanted to move away from it for a while now anyways and SSH tunnels also are the real shit.
Today was a good day.3 -
I want to do ssh is from outside the network. But I'm unable to do it. Very much frustrated. Has anyone tried it successfully?7
-
If workspace has Macs connected in local network.
Use ssh to your colleague's mac and make Mac "say weird embarrassing noises" ( if you know what i mean ) -
when you can't generate ssh key in powershell, because the -N option (Passphrase) requires an argument.
the same works in cmd.. without error....4 -
So yesterday I got to configure a WordPress install on WPEngine. I was setting up Git and added my SSH key to the WPEngine git config for this account. And this weirdo WPEngine system fetched my same key along with same key name from another account.
Due to this I had to change my SSH key altogether and add it again.
Reason, my SSH for client X was stored with label MY-NAME-X
But the same key label should not be visible under other WPEngine accounts. And it was there - thus exposing my client X name to client Y account.
This is so annoying2 -
I got reeeeeeaaaally mad today when I found out there are ssh commands in the ios shortcut application but not an actual official actual terminal.1
-
Hey there! I was hoping you guys could tell me some cool and free ssh clients for windows :)
I am currently using putty.
What are your favourite ssh clients? :)9 -
Fuck! After spending the day playing shit with our servers FS to extract more space, I had to restart the servers for the changes to be applied all this because of a shitty architecture and a minor desire from the management!
The ssh server didn't start with the server, what am I supposed to do now..4 -
School is forcing us to use their own git server for a project. Doesn't allow us to use ssh. Im done with this school...1
-
Love having ssh access to lab computers. Running a grid search with 15 folds for 468 candidates. Let's see how long this takes...
-
The no of times you type exit when you're inside a tmux inside ssh inside bash inside command prompt inside windows is too damn high.
-
How do you transfer text from one machine ( laptop ) to another ( phone ) with no common tools ( Firefox Send spat out a long string of characters that I had no way of transferring either ) on either? Basically a clipboard sync.
There used to be this online notepad at notepad.cc, but that tool is gone away now.
How do you do it hacker-style? `wall`!
- SSH into the same same server from both machines ( this also assumes you have Termux or some equivalent tool for your phone )
- use `wall` to broadcast message from source
- copy broadcast at destination
- done31 -
Fuck you Git bash
I did fucking add the ssh key to my ssh agent
I did add it to my GitHub account
you are dumb because for months until today you worked fine, now you look for ssh keys in a bullshit folder3 -
Not best practice whatsoever because the box was most likely owned, but...
SSH kept defaulting back to port 22 when it wasn't supposed to. So, wrote a cronjob that checked diff between SSH config and backed up SSH config. If different, reload backup. Didn't get locked out again.
Box has of course been replaced.2 -
VPN -> SSH -> git clone -> git branch -> sshfs pull -> edit-> restart VPN/SSH every hour or so when it goes down -> sshfs push -> git commit -> git push -> fml
-
TFW you realize that using git to track your dotfiles was a really good idea!
echo "Oh shit, I overwrote my ssh keys"
`git checkout .ssh/id_rsa`
`git checkout .ssh/id_rsa.pub` -
"I need this server account to have sumo and ssh access for the install of this software"
but if that software requires sudo, who not run it as your login account? and instead of ssh access, why not sudo over to the service account?
God I hate when people don't understand how Linux works... -
My remote server and local machine both run Linux and I'm logged in with similarly formed user names. All I had to do was reboot my local machine and I ended up shooting across a `sudo reboot` on my SSH window! 🤯5
-
Want to have today's top rant as your ssh login banner, or your FTP banner, or anything else really? - https://gist.github.com/hcaz/...
-
So I finally got something to allow me to pipe my network over ssh when I need it.
alias mcserversshproxy='ssh -p <port> -N -D localhost:9999 <user@server>'
I can now use the internal webpage in my network by configuring a profile in firefox as a proxy. Kind of slick!
This tutorial, despite its flaws, helped me work this out:
https://coolaj86.com/articles/...1 -
Open rally, open IntelliJ, ssh into something tail a log, Spotify playlist comedians. Space out... start working at 2pm leave at 3.1
-
Anyone else having timeout issues connecting to git via ssh?? Had to switch remote urls to https on 3 different repos even with the right keys. Super weird.3
-
Is it my crappy connection or the git bash for windows is just shite? It's taking forever to clone onto a repo using ssh.8
-
!rant
have never touch ssh to server. tried one using putty. but always dropped connection. lost interest in the end. care to share, anyone?5 -
settting up an ssh connection to vm is taking so much time. I have created a ssh key using ssh keygen and added the host ip address to my config file. Deleted the knownhosts file from .ssh folder. Still getting connection timed out. Need help asap9
-
So I a using the ssh installed with git on Windows.
I am trying to forward a port on my internal network server which is also my ssh server. I have exposed my network server on a forwarded port on my router. When I try to forward using this command I get a connection reset on my web service on my server.
ssh -nNT -p <port on router> -L 8000:192.168.0.22:8000 <sshuser@router>
I can log into ssh normally. So I am really confused. the 192.x.x.x address is the internal ip of the server. On a browser I try to connect to the 127.0.0.1:8000. It says the connection is reset. I assume it is being refused. So it tries to connect to something, but it fails.
I can connect to the web server from within the internal network via 192.168.0.22:8000. Really confused as to what is failing here.5 -
Despite already having a few years of professional experience dealing with Linux servers, I still, to this day, confuse, which environment file gets sourced and when...
There's /etc/profile, /etc/bashrc, ~/.bash_profile, ~/.profile, ~/.bashrc
I think it's... Bashrc for interactive shells, profile for login shells.
But then I have examples like "ssh user@server 'echo $var'" that... Don't source any of the files!
You can enable user environment files for SSH that get sourced whenever a user logs on through SSH (~/.ssh/environment / environment specified for a key in ~/.ssh/authorized_keys)
Is there some sort of master environment file that gets sourced *every* time, no matter what kind of shell starts?1 -
so I got the reverse proxy all set up on my server, forwarding all the right headers to enable SSL behind reverse proxy. awesome! my only problem remaining is, since nginx only handles HTTP/S traffic, I can't connect to my gitlab instance via ssh. anyone know how I can proxy this traffic as well to enable ssh connection for git?2