in reply to Re^12: [OT] A New Everything ?
in thread [OT] A New Everything ?

You'd have saved yourself a lot of time and effort if you'd read the DigitalOcean tutorials on this subject.

Replies are listed 'Best First'.
Re^14: [OT] A New Everything ?
by Aldebaran (Curate) on Sep 27, 2020 at 22:50 UTC
    You'd have saved yourself a lot of time and effort if you'd read the DigitalOcean tutorials on this subject.

    Maybe. I wouldn't say the time was wasted when I needed to read up so much with unix again, along with a new vendor to me, DigitalOcean. Also, I just had to make half a dozen big mistakes on my own time, but success was achieved 12 days after my first droplet formed. I may have twisted my arm off patting my own back when I used vi correctly, but ALL THREE TIMES, I locked myself out. Somewhere along the line, I found the button for "send me a new root password."

    Furthermore, I wouldn't call the process as linear as digital ocean might make it seem with their hyperlinks. set-up-ssh-keys has many pointers, but I don't think it has anything about chown'ing and chmod'ing .ssh and authorized_keys. Many hyperlinks don't make the search more specific.

    The above gives this line of code, which I could never get to work:

    cat ~/.ssh/id_rsa.pub | ssh username@remote_host "mkdir -p ~/.ssh && cat >> ~/.ssh/authorized_keys"

    Similarly, I couldn't get this to work, and not for lack of trying:

    ssh-copy-id -i id_rsa.pub wilma@143.110.153.42

    What did work was doing it from scratch. From my laptop:

    scp id_rsa.pub root@164.90.158.33::/home/fred/.ssh

    Log-in as root one last time:

    root@fourth:/home/fred# cd .ssh/
root@fourth:/home/fred/.ssh# ls -al
total 12
drwx------ 2 fred fred 4096 Sep 26 23:38 .
drwxr-xr-x 3 fred fred 4096 Sep 26 23:36 ..
-rw-r--r-- 1 root root  419 Sep 26 23:38 id_rsa.pub
root@fourth:/home/fred/.ssh# cat id_rsa.pub > authorized_keys
root@fourth:/home/fred/.ssh# chown fred:fred authorized_keys 
root@fourth:/home/fred/.ssh# chmod 600 authorized_keys 
-rw------- 1 fred fred 419 Sep 26 23:43 authorized_keys
-rw-r--r-- 1 root root 419 Sep 26 23:38 id_rsa.pub
root@fourth:/home/fred/.ssh#

    [download]

    And finally, log-in as fred:

    fred@fourth:~/.ssh$ ls -al
total 16
drwx------ 2 fred fred 4096 Sep 26 23:43 .
drwxr-xr-x 4 fred fred 4096 Sep 26 23:46 ..
-rw------- 1 fred fred  419 Sep 26 23:43 authorized_keys
-rw-r--r-- 1 root root  419 Sep 26 23:38 id_rsa.pub
fred@fourth:~/.ssh$ ..
fred@fourth:~$ ls -al
total 32
drwxr-xr-x 4 fred fred 4096 Sep 26 23:46 .
drwxr-xr-x 3 root root 4096 Sep 26 20:57 ..
-rw-r--r-- 1 fred fred  925 Sep 26 23:39 .bash_aliases
-rw-r--r-- 1 fred fred  220 Sep 26 20:57 .bash_logout
-rw-r--r-- 1 fred fred 3771 Sep 26 20:57 .bashrc
drwx------ 2 fred fred 4096 Sep 26 23:46 .cache
-rw-r--r-- 1 fred fred    0 Sep 26 20:57 .cloud-locale-test.skip
-rw-r--r-- 1 fred fred  807 Sep 26 20:57 .profile
drwx------ 2 fred fred 4096 Sep 26 23:43 .ssh
fred@fourth:~$

    [download]

    Thanks all for criticisms and comments,

[reply]
[d/l]
[select]

      Thanks all for criticisms and comments,

      None of it was critical of you. Pointing out a deprecated command was being used improperly, and suggesting that reading the docs would help. On DO, like most of these platforms I've used they provide a trivial way to supply ssh keys before VMs/droplets(whatever) are created, making management a breeze and providing better security from the get go. On DO sadly the default is left at 'password' in the Authenticator section. Their quick start section and how tos cover this in more detail. N.B. that some of the user provided documentation has corrections from DO, usually found at the bottom.

[reply]

In Section Seekers of Perl Wisdom