Mailing List Archives
Authenticated access
|
|
![[Computer Systems Lab]](http://www.cs.wisc.edu/pics/csl_logo.gif)
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [HTCondor-users] ssh_to_job via JumpHost from local machine for port forwarding
- Date: Sat, 18 Apr 2020 02:28:40 +0000
- From: "Bockelman, Brian" <BBockelman@xxxxxxxxxxxxx>
- Subject: Re: [HTCondor-users] ssh_to_job via JumpHost from local machine for port forwarding
Hi Till,
I have very little SSH-foo, but since no one else answered...
When the sshd is launched on the worker node, thereâs a sshd config template file which is used to generate the config.
Is it possible what youâre trying is forbidden by the generated server config? Maybe thereâs a clever way to punch a hole with a known key pair when starting the server?
Brian
Sent from my iPhone
> On Apr 14, 2020, at 5:09 PM, Till Riedel (TM) <riedel@xxxxxxx> wrote:
>
> ïHi,
>
> (I have been thinking about a solution to a problem that I have the feeling could be solved much simpler. I thought maybe this list can safe me from doing to stupid stuff. I still don't get the HTCondor internal communication part completely...)
>
>
> I am accessing htcondor via a login node . What I want to do is to define a ProxyCommand line in my ssh config to directly connect to the job like:
>
> Host *%condor-job
> ProxyCommand ssh login.example.com ssh_to_job_tunnel.sh $(echo %h | cut -d%% -f1)
>
>
> ssh_to_job_tunnel.sh only contains a line to call the ProxyCommand directly:
>
> eval `echo $@|sed -n "s/.*-oProxyCommand=\(.*\)condor-job.*/\1/p"`
>
>
> But now I have a problem I don't seem to get around: ssh_to_job always generates new keypairs and I cannot add them easily (maybe I try could to do agent-forwarding, which I don't like). So I was thinking to fork condor_ssh_to_job to add the keys as parameters. But before I start digging further into the source I thought I first join this mailing-list to not solve problems that have been solved already!
>
>
> Maybe I should also should also explain what I want to achieve: I want to securely forward a unix socket from the job via ssh to my local machine. (Actually somewhat similar to what the ssh_to_job stuff does, but it seems pretty hardcoded into the starter class or is there a command to open sockets or bidirectional pipes to the remote job)
>
>
> Hope I don't sound to mad for a first post.
>
>
> Thanks in advance for the help!
>
> Till
>
>
>
>
>
> --
> KIT - The Research University in the Helmholtz Association
>
> Dr. Till Riedel (AkadR)
> Lab Leader TECO
> Vincenz PrieÃnitz Str. 1
> 76131 Kalrlsruhe
>
> Tel: 0721 608 41706 (forwarded!)
>
> Web: https://www.teco.kit.edu/~riedel
> Email/XMPP: till.riedel@xxxxxxx
> Skype: till.riedel
>
> _______________________________________________
> HTCondor-users mailing list
> To unsubscribe, send a message to htcondor-users-request@xxxxxxxxxxx with a
> subject: Unsubscribe
> You can also unsubscribe by visiting
> https://lists.cs.wisc.edu/mailman/listinfo/htcondor-users
>
> The archives can be found at:
> https://lists.cs.wisc.edu/archive/htcondor-users/