[freeside] SSH adding users to shell machine

Ivan Kohler ivan at sisd.com
Sun Oct 3 16:55:43 PDT 1999 

On Thu, Sep 30, 1999 at 04:26:52PM -0700, Chris wrote:
> Hello all,
> 
> I've read all the archives and have found numerous entries relating to the
> topic but I just can't make the freeside machine log into the shell machine
> and do a USERADD command.  In fact, it appears that ssh is never even being
> executed (it could be - I am watching TOP to see if it runs so it could run
> and quit quicker than top can update I suppose...)

That doesn't seem like a good way to tell if ssh is being called.  Save
the ssh binary and replace it temporarily with a stub program, for
example: 

	#!/bin/sh
	echo $@ >/tmp/ssh_stub.log
 
> I have set SHELLMACHINE in the conf dir.
> SSHD2 is running on the shell machine.

You may want to check for ssh1 vs. ssh2 incompatibilities.

> SSH works on the freeside machine but fails to login to the shell
> machine even when I manualy try it.

Yep, you need (as the freeside user):
    ssh root at shellmachine
to work without prompting for a password.

> I obviously haven't generated my keys
> and hostkeys etc. either correctly or placed them in the right dirs.  Could
> someone PLEASE take a second and run down exactly what keys should be in
> what dirs and what machines?  IE. shell or freeside ...  Please don't say
> RTFM because I truly have!

:/

htdocs/docs/billing.html states:

  - As the freeside user (on your freeside machine), generate an  
    authentication key using ssh-keygen.  Since this is for unattended
    operation, you need to use a blank passphrase. 
  - Append the newly-created identity.pub file to root's authorized_keys
    on the remote machine(s). 

These files should be in the `.ssh' subdirectory of each user's home
directory.

Perhaps the location or filename has changed in ssh v2?

-- 
Ivan Kohler <ivan at sisd.com> - finger for PGP key - <moc.dsis at navi> Relhok Navi
Open-source billing and administration for ISPs - http://www.sisd.com/freeside
20 4,16 * * * saytime # please don't be surprised if you find me dreaming too

More information about the freeside-users mailing list