@bbigford I'll second that

@black3dynamite said in Allowing Root Password Login via SSH to Dragonfly BSD: @scottalanmiller said in Allowing Root Password Login via SSH to Dragonfly BSD: Dragonfly is tough by default because unless you use something like Salt, you can't connect to it to get keys to it in the first place. You can curl keys to it, of course. But you need totally different processes than you would typically use with any other OS to get it set up. That means it's not even Ansible friendly. Pretty much agent-based tools like Puppet, Salt, etc... is the way to go. Yup, unless you have some way to push the Ansible key ahead of time, like in a curl. So back to the beginning there

@fateknollogee said in KVM host: Failed login attempts: My bad, my bad.... Last week I was doing some testing & I set a port forward on port 22 to this host. Ooops, I forgot to remove the rule. This is why I only allow RSA key based authentication. No root login, no password login. Disable all other methods.

@bigbear said in Windows 10 Now Includes SSH Client and Server Out of the Box: FireSSH Looks like FireSSH is not compatible with Firefox Quantum. https://addons.mozilla.org/en-US/firefox/addon/firessh/

All fixed. Did a full update, then had to modify the /root/.profile file from this line... mesg n || true To this line... tty -s && mesg n || true

And easy enough to resolve once I look. @EddieJennings you should have reminded me to look more earlier.. /etc/sudoers has it commented out. ## Allows people in group wheel to run all commands # %wheel ALL=(ALL) ALL ## Same thing without a password # %wheel ALL=(ALL) NOPASSWD: ALL

@scottalanmiller said in Out of Band Management - does it mean no keyboard at all: @JaredBusch said in Out of Band Management - does it mean no keyboard at all: @scottalanmiller said in Out of Band Management - does it mean no keyboard at all: @Carnival-Boy said in Out of Band Management - does it mean no keyboard at all: Well, I'm glad that's been cleared up. You can probably delete the thread now I don't even know what the original thread was! And that is why you have no concept of what you posted being completely wrong for the context of the thread. Honestly, it is pretty straight forward if you read the first post. https://mangolassi.it/topic/13595/out-of-band-management-does-it-mean-no-keyboard-at-all The first post also contains links back to the thread that @DustinB3403 pulled this from. I was responding the post quoted, though. Which was in the context of the entire thread. If you want to cherry pick something, then clearly, state as much. You did not.

@aidan_walsh said in Android OS: ConnectBot: @gjacobse IIRC thats an optional extra for creating an account to sync your auth details between devices. Yepp. And also, generating SSH keys, I'd imagine, but I may be off base on that. I have the paid version, and it's cheap, so I bought it since I use it so much.

@fuznutz04 said in Call recording backups - CentOS to Windows: @DustinB3403 Perfect. Thank you. Exactly the route I was about to go down. Works really easily.

I see new, greater, horizons of automation happening here.

@emad-r said in What is the Best SFTP Server for Windows: AV = ESET is better I've had the misfortune of dealing with ESET and I can tell you, I don't agree with you in the least. We won't even let ESET in the shop, we literally don't trust the company. And it's reliability was terrible compared to Defender. Worst I've ever dealt with.

Remmina is a great tool. I've had excellent luck with it.

@travisdh1 said in Having Trouble Connecting to NTG Lab with X2GO: @scottalanmiller said in Having Trouble Connecting to NTG Lab with X2GO: I used to use XFCE a lot, but the interface is just too lean for me. LXDE for me now when I need something lean and Cinnamon when I want a full desktop replacement. I find KDE just enough confusing and too "heavy" to learn to bother. Yeah, KDE isn't my favorite, but everyone here was able to use it without having to retrain them, so it's what we went with. I was very glad I stuck to the "universal" desktop environments when making recommendations tho, makes life so much easier. I hate that the Super (Windows) key is only a modifier. It's much easier and more familiar to hit that key and have the activities overview come up than alt+space or alt+f2 (whatever it actually is) for krunner.

@scottalanmiller Thanks. I got it. I overthink everything.

@tonyshowoff said in Hello Mr Chinese IP based hacker: That's why we set any WAN-fancing SSH port to something obscenely high like 41022, not for "security" but because of the logs. In fact, all of our sshd services run following that pattern, as does our internal HTTP(S) servers but the load balancers take in 80/443. This prevents as many services as possible from running as root, which anything running port < 1024 does. I don't think most people even know this. At the very least if there's a NAT in play, one can always set ssh and web services ports much higher and just translate the ports to avoid the same issue. (I know there are some work arounds like setcap on Linux, but in general this is the default behaviour on most machines) For some reason this made me think of The Venture Bros, Hunter Gather says: And we want your sad ass undercover agents to stop trying to infiltrate our group. Frankly we're tired of killing them and we can't afford the body bags! Useful piece of information. Thanks!

@johnhooks said in ssh_exchange_identification: Connection closed by remote host: Also a good way to use a web management interface without opening up http and https. I do that a bit.

I first heard about tmux here at ML. I've gotten to where I like it better than screen most of the time.

That's a good question... when does chrooting make more sense than containers today? Storage is one. Lots of people use chroot jails for storage purposes. Containers are heavier than chrooting which has effectively no impact on any resources.

@wrx7m said: I restarted the SSH service but I don't know if it was necessary. sudo service ssh restart It is.

@Kelly said in OpenSSH installed, but cannot use SCP: Ok, I can now copy. Thanks for all the help. I have learned a lot in just this one issue. Cool, just realized that this was solved. So marking it as such. Thanks.