How To Login and RSYNC to a Remote Host with SSH without password prompt

Step 1 – Setup public SSH keys


On the local server, generate the public SSH keys with no password:

ssh-keygen -f ~/.ssh/id_rsa -q -P ""
cat ~/.ssh/id_rsa.pub

This is the public SSH key that can be placed on other hosts to provide no-password required access:

ssh-rsa AAA...[*] root@boomclickclick

Copy this key to your clipboard and login to the remote (destination) server.

Place this SSH key into your ~/.ssh/authorized_keys file:

If your SSH folder does not exist, create it manually:

mkdir ~/.ssh
chmod 0700 ~/.ssh
touch ~/.ssh/authorized_keys
chmod 0644 ~/.ssh/authorized_keys

 Step 2: Login to the Remote Server from the Local Server

ssh example.com

Now, if you wanted – you could rsync a folder to the remote host without logging in.

Make sure that you have rsync installed on the destination server, and then exit out of the remote server and do the same on your source server. Next, issue an rsync command, something like below, but adjusted to your circumstance. The trailing / in the example below means that I’m syncing a folder and not a file.

rsync -avz -e 'ssh' --delete /foo/bar/test/ user@example.com:/foo/bar/test/

The next project is to create a shell script and create a cron job to run the rsync at a specified interval.

I’ve used this to rsync folders from Apple OS X Mavericks, Scientific Linux 6.5 and Debian Wheezy,

 

UPDATE

Using Cygwin in Windows 8.1, there is a command need to be run in Windows Cygwin window:

chgrp Users ~/.ssh/id_rsa

Then the solution posted here can be applied, 400 or 600 is OK.

chmod 600 ~/.ssh/id_rsa

Mac OSX and MS Exchange

I’ve got multiple email accounts on my domains, as well as gmail accounts, as well as an icloud account and a work account that uses a cloud based exchange server.   In this mix, I have multiple machines – Windows, Linux and OSX all running and accessing the same accounts in real time.    The Beast (my windows box) runs all mail as POP to download hard copies of my email so if needed – I’m not dead in the water if the remote server or internet access is unavailable.

OSX and Linux access my email using IMAP – so that they are always updated with the same information regardless of which machine that I’m using.

I love the fact that I can sync my Contacts, Calendar, Notes, Reminders with OSX – and then use Thunderbird to link IMAP with the exchange server for e-mail.    This keeps my inbox clean – and when I get a email – the dock notification is specific to Thunderbird and I know it’s work related.    You don’t need to use the Thunderbird Extension (“ExQuilla”) that is full of bugs and features and costs $10 annually.

So, I use Apple’s Mail in OSX for everything except exchange email which is sync’d with Thunderbird via IMAP, with the other integration services provided by OSX.

This works for me.

Debian Wheezy as Mavericks Time Machine Server

There are two Mac OSX boxes in my household.   I used a different mount point for each OSX Mavericks computer on separate RAID 1 volumes, though I could have used LVM mount points to allow the backup to “grow” nicely.

Installing Packages

The newer releases of OS X requires Netatalk 2.2.x+.    Mac OS X 10.9 “Mavericks” works great with the version of netatalk shipped with Debian 7.0 (Wheezy), the topic of this guide.

Run the following commands:

aptitude update
aptitude install netatalk avahi-daemon avahi-utils

Setting up Netatalk
Let’s do some configs…

Change your /etc/netatalk/AppleVolumes.default file to export the Time Machine volume. At the end of the file you’ll find a line that reads:

~/                     "Home Directory"

Comment out this line by adding a “#”, since we’ll later create a time machine user that will not have a home directory, and this may cause you to encounter an error.

#~/                     "Home Directory"

Then add another line below it:

/opt/timemachine "Time Machine" options:usedots,upriv,tm
  • /opt/timemachine is your backup folder.
  • “Time Machine” is the label to identify the Time Machine volume.

The rest of the line contains various parameters to allow the Mac to “play nice” with this server as a Time Machine target. It’s important to add the options:tm at the end of the line so that Netatalk enables various special options for Time Machine. You can also add fancy options to restrict access to users logging in with specified accounts.

The next config file is /etc/netatalk/afpd.conf. Comment the last line like this:

# - -tcp -noddp -uamlist uams_dhx.so,uams_dhx2.so -nosavepassword

…and add this:

- -tcp -noddp -uamlist uams_guest.so,uams_dhx.so,uams_dhx2.so

I am not sure if this command is actually needed for it to work, but it worked.

touch /opt/timemachine/.com.apple.timemachine.supported

Restart netatalk for the new configuration to take effect:

sudo service netatalk restart

For an additional layer of security I decided to create a dedicated user account that will only have access to the write to the backup folder. Time Machine will ask for this information on initial setup.

sudo useradd -s /bin/false timemachine
sudo passwd timemachine
sudo chown -R timemachine:timemachine /opt/timemachine

This takes care of the server side.

Client Setup
Now configure your OS X installation so it sees unsigned time machine volumes. Open the terminal app and execute the following command:

defaults write com.apple.systempreferences TMShowUnsupportedNetworkVolumes 1

How to clear fail2ban out of ssh iptables

The first thing you need to do is find out the IP address of the banned user.

iptables -L

This will list the current rules that exist in iptables.

You’ll see one listed as fail2ban-ssh, likely with an ip address.

To clear it, issue the follow command.

iptables -D fail2ban-ssh -s <ip_address_to_be_set_free> -j DROP

I have used the code above with Debian wheezy successfully.

Burger Battle:  Fuddruckers versus  Mighty Fine

Burger Battle: Fuddruckers versus Mighty Fine

The Battleground

I visited Mighty Fine and Fuddruckers this month for dinner.   This is a comparison between the two burger chains, one being an international company started in San Antonio, and the other a relatively new player in Austin, Texas.   I judge each joint on five (5) criteria, with each criteria allocated 10 points for a possible perfect score of 50.    1) Price based on a 1/2lb hamburger, 2) Preparation, 3) How the burger is dressed, 4) The side of fries, and 5) Establishment Ambiance and Decor.

The Combatants

fuddruckers

   Versus   mighty fine

 

Price

Fuddruckers 1/2lb Burger w/Cheese: $5.99
Mighty Fine 1/2lb Burger w/Cheese: $6.19

10 points to Fuddruckers for winning on price, 5 points consolation to Mighty Fine for being competitive on price.

Preparation

Fuddruckers prepares your burger to order.  You want your burger “medium rare” – they’ll fix it medium rare for you.   They also use a charbroiler to cook your burger.   The burger is measured to 1/2lb by machine and formed in a mold to guarantee a very nice edge, and an evenly thick burger.   It is served hot and moist with a lightly buttered toasted bun.

Mighty Fine prepares your burger for you – no customization allowed.   It will be either very welll done or well done.   They use a flat griddle cooktop – no charbroiling here.  You’ll get it cooked on the stove, covered to melt your cheese.   The pattie is hand-formed, uneven, and irregular in size and form.   It’s claim to fame is that it’s hand made.

Points to Fuddruckers for a better burger.   10
Points to Mighty Fine for having a burger:     5

Dressed

Mighty Fine will ask you if you want “Red, Yeller, or White” and what would you like on your burger.   They’ll customize and ask you what you want to order, and can dress your burger with additional “local” (off-menu) items for an additional charge.    You have to ask.

Fuddruckers has all of the dressings, less the cheese that was melted on your pattie, at a large salad bar area.   You can grab as much or as little as you want – with shredded or whole lettuce, and “red, yeller, or white” to the side.   Fuddruckers will also add additional items to your pattie for an additional charge.

Both joints get a point deducted for using white onions on the condiment selection.  Everybody knows that red onions are salad onions (intended to be eaten raw) and white onions are for sauteed dishes, seasoning, or cooking (ie: onion rings).

Points to Fuddruckers for allowing the customer to decide minus 1 point:  9
Points to Mighty Fine for being dictators of burger dressing, minut 1 point: 4

Side order of Fries

Mighty Fine has thin crinkle-cut french fries freshly made from potatoes grown in Oregon’s Malheur County (near Idaho).   They are plentiful – but they are not cooked twice.  They can be greasy.  Some are overly cooked and others not cooked through.    I didn’t care for the fries at Mighty Fine Burgers.  Seasoning was not added to the fries.

Fuddruckers also makes their fries from Malheur County potatoes, also cutting them fresh on-site.   Fuddruckers, however, serves real french fries – Steak Fries.   Cut big and wide – these fries were cooked perfectly, not too greasy, plentiful, and crunchy – the sign of being cooked twice.  Nice and big – they were perfect for dipping into a Mayonnaise and Ketchup mixture.   I loved the fries at Fuddruckers.

Points to Fuddruckers for better french fries:  10
Points to Mighty Fine for having french fries on the menu:  5

Ambiance

Mighty Fine is clean and open, with large long tables that would be right at home in a Texas BBQ joint.    No plates – just a bag, with your burgers and fix’ns inside – use the bag or the wrapper for ketchup dipping.   Talk to the family next to you as your sharing the same table.  Apologize to the lady sitting behind you in the uncomfortable folding chair.    The odd thing is a one-way see through glass in the men’s bathroom.  Nothing like standing up and taking a whizz – and just on the other side of the glass is a family eating lunch.   Kinda disturbing – but in a funny way.   “OMG, I can’t believe I just whizzed and you guys didn’t see me.”    Also a nice touch are the souvenir plastic cups that you can take home.   They are the same type used by the Oasis, Rudy’s and a couple of other local Austin eateries – good marketing, and handy for using as daily cheap glasses for large gathering at home.   The music being played is varied – but of the soft-rock variety.  Lighting is bright,  can be glaring – trying to get the “clean” feel of clean metal or picnic tables outside.

Fuddruckers has traditional seating and is well lit, has upscale tables for four (that can be moved together if needed), large booths, and larger rounded booths for larger groups.     Lighting and colors are subtle.   There is no outside seating.  The music is popular rock music from various eras.

This is a toss-up tie – because there are advantages to both types of seating based upon your “mood” at the time of your visit.    Families will enjoy the open atmosphere at Mighty Fine  – because the expectation bar is set so low.    Couples will enjoy Fuddruckers for a more intimate and conversational friendly atmosphere.

Points to Fuddruckers:   10
Points to Mighty Fine:  10

 

Winner:  Fuddruckers!

Fuddruckers was the clear winner in this battle of the burger beasts.     Fuddruckers serves a burger that is consistently good, well prepared (to order) while leaving the final dressing of the burger up to the customer.    Mighty Fine got points for showing up – but Mighty Fine is more of a repurposed BBQ joint than a hamburger joint.   If Mighty Fine served BBQ brisket and Elgin Sausage instead of Hamburgers – then it might make sense.   But – that’s where the owners and operators of Mighty Fine come from.

For the money you spend, a Fuddruckers burger is much better than a Mighty Fine burger.

And it’s more affordable too!   For $2 more, you can get a Buffalo, Venison, Elk, Salmon, Turkey or Ostritch burger instead of beef.   How cool is that?

Fuddruckers:  49
Mighty Fine:   29