zefciu's questions -server

zefciu

Asked: 2017-04-08 04:05:53 +0800 CST

SSH jumping with aliases and "-F"

I have a server in a private subnet to which I want to connect via a machine that faces the Internet. There are some tutorials for this. I used this one: https://heipei.github.io/2015/02/26/SSH-Agent-Forwarding-considered-harmful/

The problem with it is that it assumes I can edit the ~/.ssh/config file. If I am however running code on CI, I would rather use the config file shipped in my repository and use -F switch. In this case the above strategy stops working as the ssh command used as ProxyCommand doesn't load the the same configuration file and doesn't know the aliases. What I did was:

Host ansible                                                                    
  User ubuntu                                                                   
  Hostname xxx.compute.amazonaws.com                  

Host app                                                                        
  User ubuntu                                                                   
  Hostname 10.0.2.40                                                            
  ProxyCommand ssh -F test-ssh.cfg -W %h:%p ansible

This works but is a little dirty, as I need to put the name of the file into the file itself and it would break if someone changes the filename. So my question is: is there a cleaner way to create a configuration file with aliases and ProxyCommand that could be used with -F?

zefciu

Asked: 2016-09-14 04:24:32 +0800 CST

Calling lvcreate from inside the container hangs

I run a container. It has all the capabilities and mounts all the directories from root (except /proc). When I call lvcreate from inside of it I get:

# lvcreate -v -L104857600B -n vol1 default
Finding volume group "default"
Archiving volume group "default" metadata (seqno 17).
Creating logical volume vol1
Creating volume group backup "/etc/lvm/backup/default" (seqno 18).
Activating logical volume "vol1".
activation/volume_list configuration setting not defined: Checking only host tags for default/vol1
Creating default-vol1
Loading default-vol1 table (252:4)
Resuming default-vol1 (252:4)

And the command hangs. I also get this in logs:

Sep 12 12:03:31 node3 systemd-udevd[12529]: Process '/sbin/dmsetup udevcomplete 23072978' failed with exit code 1

If I interrupt it with ctrl-C I set, that the logical volume was created. I can also interrupt the command by issuing dmsetup udevcomplete_all from inside the same container. If I call lvcreate on the host it works normally and exits cleanly.

I believe, that this problem has something to do with udev cookies not being shared between container and host. I have no idea however, what exactly is lvm trying to do here and how to fix the problem.

I need this so that containerised kubelet can call flexvolume plugin that would be able to allocate logical volumes.

SSH jumping with aliases and "-F"

Calling lvcreate from inside the container hangs

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?