Mercurial > index.cgi > dotfiles
view .ssh/config @ 186:83f164405755
New 'onsubnet' command, new config for master controls
| author | Steve Huston <huston@astro.princeton.edu> |
|---|---|
| date | Tue, 03 Mar 2020 16:48:59 -0500 |
| parents | d8596a04bdb1 |
| children | f5969673c794 |
line wrap: on
line source
# Turn things off for floyd - it doesn't need them Host floyd-mgmt floyd-mgmt.astro.internal ForwardAgent no ForwardX11 no ForwardX11Trusted no # Let's try a proxy connection here Host xanadu.astro.princeton.edu User huston ControlMaster auto ControlPersist yes ControlPath ~/.ssh/sockets/%C Match host csesbh2.princeton.edu exec "~/.ssh/onsubnet --not 128.112." ProxyJump xanadu.astro.princeton.edu Host csesbh2.princeton.edu User huston ControlMaster auto ControlPersist yes ControlPath ~/.ssh/sockets/%C # xanadu-vm and syrinx's keys change, let's try to avoid errors Host xanadu-vm syrinx xanadu-vm.astro.princeton.edu syrinx.astro.princeton.edu User huston StrictHostKeyChecking no ForwardAgent yes ForwardX11 yes ForwardX11Trusted yes # Everything is fine for the Raspberry Pi, just need a different user Host cake cake.srhuston.net User pi ForwardAgent yes ForwardX11 yes ForwardX11Trusted yes # Allow everything for CSES, astro, and home hosts w/ FQDN Host cses*.princeton.edu *.rc.princeton.edu *.rc *.astro.princeton.edu *.srhuston.net User huston ForwardAgent yes ForwardX11 yes ForwardX11Trusted yes # Deny everything for other hosts w/ a dot Host *.* ForwardAgent no ForwardX11 no ForwardX11Trusted no # Now allow for anything else - if we're typing a single hostname, it's likely # trusted. Host * User huston ForwardAgent yes ForwardX11 yes ForwardX11Trusted yes