]> git.madduck.net Git - etc/ssh.git/blobdiff - .ssh/config.in

madduck's git repository

Every one of the projects in this repository is available at the canonical URL git://git.madduck.net/madduck/pub/<projectpath> — see each project's metadata for the exact URL.

All patches and comments are welcome. Please squash your changes to logical commits before using git-format-patch and git-send-email to patches@git.madduck.net. If you'd read over the Git project's submission guidelines and adhered to them, I'd be especially grateful.

SSH access, as well as push access can be individually arranged.

If you use my repositories frequently, consider adding the following snippet to ~/.gitconfig and using the third clone URL listed for each project:

[url "git://git.madduck.net/madduck/"]
  insteadOf = madduck:

add 1+5t ssh
[etc/ssh.git] / .ssh / config.in
index 9722f824023ca0f709cd3f213d8468149c846654..ecd4f19acda49674256fe84ab601908d9f4af915 100644 (file)
 Host 127.0.0.1 | localhost
-  ForwardAgent yes
   ForwardX11 yes
   ForwardX11Trusted yes
   NoHostAuthenticationForLocalhost yes
 
+### CHARADE KVM HOST
+
+Host charade.madduck.net | charade
+  Hostname charade.madduck.net
+Host charade-vnc
+  ControlMaster no
+  ControlPath none
+  Hostname charade.madduck.net
+
+Host emily.madduck.net | emily | charade-kvm
+  Hostname emily.madduck.net
+
+Host matilda.madduck.net | matilda
+  Hostname matilda.madduck.net
+Host irc-host.madduck.net | irc-host
+  User madduck
+  HostKeyAlias matilda.madduck.net
+  Hostname matilda.madduck.net
+  ConnectTimeout 60
+Host ssh443
+  User madduck
+  HostKeyAlias matilda.madduck.net
+  Hostname matilda.madduck.net
+  Port 443
+  ConnectTimeout 60
+
+Host vizier.madduck.net | vizier
+  Hostname vizier.madduck.net
+Host admin.madduck.net | admin
+  Hostname admin.madduck.net
+  HostKeyAlias vizier.madduck.net
+  User git
+
+Host ambassador.madduck.net | ambassador
+  Hostname ambassador.madduck.net
+
+Host alan.madduck.net | alan
+  Hostname alan.madduck.net
+  LocalForward localhost:8390 localhost:8384
+Host git.madduck.net | git
+  User git
+  HostKeyAlias alan.madduck.net
+
+Host swan.madduck.net | swan
+  Hostname swan.madduck.net
+
 Host pulse.madduck.net | pulse
-  ForwardAgent yes
   Hostname pulse.madduck.net
-  #AddressFamily inet
-Host svn.madduck.net | svn
-  User madduck
-  HostKeyAlias pulse.madduck.net
-Host git.madduck.net | git
-  User madduck
-  HostKeyAlias pulse.madduck.net
-  #AddressFamily inet
-Host scratch.madduck.net | scratch
-  User madduck
-  HostKeyAlias pulse.madduck.net
-  #AddressFamily inet
+
+Host vera.madduck.net | vera
+  Hostname vera.madduck.net
+
+Host arnold.madduck.net | arnold
+  Hostname arnold.madduck.net
+
+Host seamus.madduck.net | seamus
+  Hostname seamus.madduck.net
+
+Host cymbaline.madduck.net | cymbaline
+  Hostname cymbaline.madduck.net
+
+Host lunatic.madduck.net | lunatic
+  Hostname lunatic.madduck.net
+
+### UNI ZURICH MACHINES
+
+Host gig.madduck.net | gig | eugene-kvm
+  Hostname gig.madduck.net
+
+Host eugene.madduck.net | eugene
+  Hostname eugene.madduck.net
+Host eugene-luks
+  Hostname eugene.madduck.net
+  User root
+
+Host diamond.madduck.net | diamond
+  Hostname diamond.madduck.net
+  LocalForward localhost:8389 localhost:8384
+  DynamicForward localhost:9041
 Host debian.madduck.net | debian
+  HostKeyAlias diamond.madduck.net
+Host scratch.madduck.net | scratch
   User madduck
-  HostKeyAlias pulse.madduck.net
-  #AddressFamily inet
-Host openvpn.madduck.net | openvpn
-  User madduck
-  HostKeyAlias pulse.madduck.net
-  #AddressFamily inet
+  HostKeyAlias diamond.madduck.net
+Host tunes.madduck.net | tunes
+  AddressFamily inet
+  ControlMaster no
+  Hostname tunes.madduck.net
+  HostKeyAlias diamond.madduck.net
+  IPQoS lowdelay af13
+Host flics.madduck.net | flics
+  AddressFamily inet
+  ControlMaster no
+  Hostname flics.madduck.net
+  HostKeyAlias diamond.madduck.net
+  IPQoS lowdelay af13
 
-Host martin-krafft.net
-  User madduck
-  HostKeyAlias seamus.madduck.net
-Host phd.martin-krafft.net
-  User madduck
-  HostKeyAlias seamus.madduck.net
-Host madduck.net
-  User madduck
-  HostKeyAlias seamus.madduck.net
+Host domine.madduck.net | domine
+  Hostname domine.madduck.net
+  DynamicForward localhost:9031
 
-Host tunes.madduck.net | tunes
-  Hostname bell.madduck.net
-  HostKeyAlias bell.madduck.net
+Host shelter.madduck.net | shelter
+  Hostname shelter.madduck.net
+Host backup.madduck.net | backup
+  HostKeyAlias shelter.madduck.net
 
-Host sheep.umverkehr.ch | sheep | webmail.madduck.net | webmail
-  Hostname sheep.umverkehr.ch
-  User madduck
+### PIPER / BYTEMARK
 
-Host lapse.rw.madduck.net | lapse.oerlikon.madduck.net | lapse
-  CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-#  AddressFamily inet
+Host piper.madduck.net | piper
+  Hostname piper.madduck.net
 
-Host wall.oerlikon.madduck.net | oerlikon.no-ip.org | wall
-  CheckHostIP no
-  ForwardAgent yes
-#  AddressFamily inet
-  HostKeyAlias wall.oerlikon.madduck.net
+### CIRRUS / HETZNER
 
-Host embryo.gauting.madduck.net | gauting.no-ip.org | embryo
-  CheckHostIP no
-  ForwardAgent yes
-  HostKeyAlias embryo.gauting.madduck.net
+Host cirrus.madduck.net | cirrus
+  Hostname cirrus.madduck.net
 
-Host piper.oerlikon.madduck.net | piper
-  Hostname piper.oerlikon.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
-#  AddressFamily inet
-Host pipere
-  Hostname wall.madduck.net
-  Port 22223
-  CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias piper.oerlikon.madduck.net
+### LEHEL
 
-Host diamond.oerlikon.madduck.net | diamond
-  Hostname diamond.oerlikon.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
-#  AddressFamily inet
-Host diamonde
-  Hostname wall.madduck.net
-  Port 22224
+Host clegg.lehel.madduck.net | clegg.lehel | clegg
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias diamond.oerlikon.madduck.net
+  Hostname clegg.lehel.madduck.net
 
-Host pict.oerlikon.madduck.net | pict
-  Hostname pict.oerlikon.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
-#  AddressFamily inet
+Host albatross.lehel.madduck.net | albatross.lehel | albatross
+  Hostname albatross.lehel.madduck.net
+  HostKeyAlias albatross.lehel
+  LocalForward localhost:8387 localhost:8384
+  DynamicForward localhost:9049
+Host albatross-luks
+  Hostname albatross.lehel.madduck.net
+  StrictHostKeyChecking no
+  UserKnownHostsFile /dev/null
+  User root
 
-Host lust.oerlikon.madduck.net | lust | hermia
-  Hostname rscguest.ex.ulcc.ac.uk
+Host albatross-via-clegg | ralbatross
+  Hostname albatross.lehel.madduck.net
+  ProxyJump clegg.dyndns.madduck.net
   AddressFamily inet
-  HostKeyAlias hermia.mjollnir.org
-  CheckHostIP no
+  LocalForward localhost:8387 localhost:8384
+  DynamicForward localhost:9049
+
+Host bike.lehel.madduck.net | bike.lehel | bike | clegg-kvm
+  Hostname bike.lehel.vpn.madduck.net
+  HostKeyAlias bike.lehel
+  ProxyJump domine.madduck.net
+
+Host visitor*.lehel.madduck.net | visitor*.lehel
+  StrictHostKeyChecking no
+  UserKnownHostsFile /dev/null
+
+### GAUTING
+
+Host mother.gauting | mother | mother.gauting.madduck.net
+  Hostname mother.fritz.box
+  HostKeyAlias mother.gauting.madduck.net
 
-Host mother.gauting.madduck.net | mother
-  Hostname mother.gauting.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
 Host mothere
-  Hostname embryo.madduck.net
-  Port 22221
-  CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
   HostKeyAlias mother.gauting.madduck.net
+  Hostname mother.rw.vpn.madduck.net
+  ProxyJump domine.madduck.net
 
-Host brick.gauting.madduck.net | brick
-  Hostname brick.gauting.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
-Host bricke
-  Hostname embryo.madduck.net
-  Port 22222
+### MTVIC
+
+Host wall.mtvic.madduck.net | wall.mtvic | wall
+  Hostname wall.mtvic.madduck.net
+
+Host wall-ipv4
+  Hostname wall.mtvic.madduck.net
+  AddressFamily inet
+
+Host julia.mtvic.madduck.net | julia.mtvic | julia
+  Hostname julia.mtvic.madduck.net
+  LocalForward localhost:8388 localhost:8384
+
+Host julia-via-wall | rjulia
+  Hostname julia.mtvic.madduck.net
+  ProxyJump wall-ipv4
+  LocalForward localhost:8388 localhost:8384
+
+Host jugband.mtvic.madduck.net | jugband.mtvic | jugband
+  Hostname jugband.mtvic.madduck.net
+
+Host wing.mtvic.madduck.net | wing.mtvic | wing
+  Hostname wing.mtvic.madduck.net
+
+Host echo.mtvic.madduck.net | echo.mtvic | echo
+  Hostname echo.mtvic.madduck.net
+
+Host visitor*.mtvic.madduck.net | visitor*.mtvic
+  StrictHostKeyChecking no
+  UserKnownHostsFile /dev/null
+
+### ROAD WARRIORS
+
+Host lotus.*
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias brick.gauting.madduck.net
+  HostKeyAlias lotus
+  LocalForward localhost:8385 localhost:8384
 
-Host debian-community.org | bikeshed.debian-community.org | bikeshed
-  Hostname bikeshed.debian-community.org
-  User madduck
-  ForwardAgent no
-  ForwardX11 no
+Host lotus | lotus.rw.madduck.net
+  CheckHostIP no
+  HostKeyAlias lotus
+  ProxyCommand bash -c "TARGETS=$( (TRIES=%h.{mtvic,catalyst,lehel,rw}.madduck.net; eval fping -aAC1 -t500 $TRIES 2>&1 & eval fping6 -aAC1 -t500 $TRIES 2>&1; wait) | sed -rne 's, : ([[:digit:]]), @\1,p' | sort -t@ -k2n | sed -ne 's, .*,,p' | tr '\n' ','); echo Targets: \$TARGETS using \${TARGETS%%%%,*} … >&2; exec nc -vq0 \${TARGETS%%%%,*} %p"
+  LocalForward localhost:8385 localhost:8384
+
+Host ini | ini.dyndns.madduck.net
+  CheckHostIP no
+  HostKeyAlias ini.dyndns.madduck.net
+  HostName ini.dyndns.madduck.net
+  Port 13579
+  User christine
+
+### PHONES
+
+Host oneplus5t | oneplus5t.phones.*
+  Port 2222
+  User shell
+  HostName oneplus5t.phones
+  HostKeyAlias oneplus5t.phones
+  LocalForward localhost:8383 localhost:8384
+
+Host tethered-oneplus5t
+  Port 2222
+  User shell
+  HostName 192.168.43.1
+  HostKeyAlias oneplus5t.phones
+  LocalForward localhost:8383 localhost:8384
+
+Host sgs7e | sgs7e.phones.*
+  Port 2222
+  User shell
+  HostName sgs7e.phones
+  HostKeyAlias sgs7e.phones
+  LocalForward localhost:8382 localhost:8384
+
+Host tethered-sgs7e
+  Port 2222
+  User shell
+  HostName 192.168.43.1
+  HostKeyAlias sgs7e.phones
+  LocalForward localhost:8382 localhost:8384
+
+Host sgs5m | sgs5m.phones.*
+  User shell
+  HostName sgs5m.phones
+  HostKeyAlias sgs5m.phones
+  LocalForward localhost:8381 localhost:8384
+
+### LOCAL VIRT HOSTS
+
+Host red | green | blue | yellow | black | white | orange | violet | wafer
+  CanonicalDomains virt
+  CanonicalizeHostname yes
+  CanonicalizeFallbackLocal no
+  CanonicalizeMaxDots 0
+  VerifyHostKeyDNS no
+  CheckHostIP no
+  StrictHostKeyChecking no
+  UserKnownHostsFile /dev/null
+
+### DEBIAN
+
+Host alioth.debian.org | anonscm.alioth.debian.org | svn.debian.org | git.debian.org | hg.debian.org | cvs.debian.org
+  HostKeyAlias moszumanska.debian.org
+
+Host people.debian.org | people
+  Hostname people.debian.org
+  HostKeyAlias paradis.debian.org
 
-Host alioth.debian.org | alioth
-  Hostname alioth.debian.org
-  User madduck
-Host svn.debian.org
-  HostKeyAlias alioth.debian.org
-Host git.debian.org
-  HostKeyAlias alioth.debian.org
-Host hg.debian.org
-  HostKeyAlias alioth.debian.org
-
-Host vore.debian.org | vore
-  Hostname vore.debian.org
-  User madduck
-Host malo.debian.org | malo
-  Hostname malo.debian.org
-  User madduck
-Host paer.debian.org | paer
-  Hostname paer.debian.org
-  User madduck
-Host crest.debian.org | crest
-  Hostname crest.debian.org
-  User madduck
-Host saens.debian.org | saens
-  Hostname saens.debian.org
-  User madduck
-Host spohr.debian.org | spohr
-  Hostname spohr.debian.org
-  User madduck
-Host auric.debian.org | auric
-  Hostname auric.debian.org
-  User madduck
-Host gluck.debian.org | gluck
-  Hostname gluck.debian.org
-  User madduck
-Host elara.debian.org | elara
-  Hostname elara.debian.org
-  User madduck
-Host sarti.debian.org | sarti
-  Hostname sarti.debian.org
-  User madduck
-Host europa.debian.org | europa
-  Hostname europa.debian.org
-  User madduck
-Host goedel.debian.org | goedel
-  Hostname goedel.debian.org
-  User madduck
-Host casals.debian.org | casals
-  Hostname casals.debian.org
-  User madduck
 Host master.debian.org | master
   Hostname master.debian.org
+
+Match host *.debian.org
+  StrictHostKeyChecking ask
+  VerifyHostKeyDNS ask
   User madduck
-Host bartok.debian.org | bartok
-  Hostname bartok.debian.org
-  User madduck
-Host merulo.debian.org | merulo
-  Hostname merulo.debian.org
-  User madduck
-Host merkel.debian.org | merkel
-  Hostname merkel.debian.org
-  User madduck
-Host murphy.debian.org | murphy
-  Hostname murphy.debian.org
-  User madduck
-Host escher.debian.org | escher
-  Hostname escher.debian.org
-  User madduck
-Host raptor.debian.org | raptor
-  Hostname raptor.debian.org
-  User madduck
-Host tartini.debian.org | tartini
-  Hostname tartini.debian.org
-  User madduck
-Host raff.debian.org | raff
-  Hostname raff.debian.org
-  User madduck
-Host klecker.debian.org | klecker
-  Hostname klecker.debian.org
-  User madduck
-Host vaughan.debian.org | vaughan
-  Hostname vaughan.debian.org
-  User madduck
-Host voltaire.debian.org | voltaire
-  Hostname voltaire.debian.org
-  User madduck
-Host bruckner.debian.org | bruckner
-  Hostname bruckner.debian.org
-  User madduck
-Host kullervo.debian.org | kullervo
-  Hostname kullervo.debian.org
-  User madduck
-Host kullervo.debian.org | kullervo
-  Hostname kullervo.debian.org
-  User madduck
-Host samosa.debian.org | samosa
-  Hostname samosa.debian.org
-  User madduck
-Host caballero.debian.org | caballero
-  Hostname caballero.debian.org
-  User madduck
-Host pergolesi.debian.org | pergolesi
-  Hostname pergolesi.debian.org
-  User madduck
-Host spontini.debian.org | spontini
-  Hostname spontini.debian.org
-  User madduck
-Host mayr.debian.org | mayr
-  Hostname mayr.debian.org
-  User madduck
-Host mayer.debian.org | mayer
-  Hostname mayer.debian.org
-  User madduck
-Host agnesi.debian.org | agnesi
-  Hostname agnesi.debian.org
-  User madduck
-Host puccini.debian.org | puccini
-  Hostname puccini.debian.org
-  User madduck
-Host villa.debian.org | villa
-  Hostname villa.debian.org
-  User madduck
-Host piatti.debian.org | piatti
-  Hostname piatti.debian.org
-  User madduck
-Host peri.debian.org | peri
-  Hostname peri.debian.org
-  User madduck
-Host lobos.debian.org | lobos
-  Hostname lobos.debian.org
-  User madduck
-Host verdi.debian.org | verdi
-  Hostname verdi.debian.org
-  User madduck
-Host ries.debian.org | ries
-  Hostname ries.debian.org
-  User madduck
-Host goetz.debian.org | goetz
-  Hostname goetz.debian.org
-  User madduck
-Host rietz.debian.org | rietz
-  Hostname rietz.debian.org
-  User madduck
-Host steffani.debian.org | steffani
-  Hostname steffani.debian.org
-  User madduck
-Host lebrun.debian.org | lebrun
-  Hostname lebrun.debian.org
-  User madduck
-Host liszt.debian.org | liszt
-  Hostname liszt.debian.org
-  User madduck
-Host mundy.debian.org | mundy
-  Hostname mundy.debian.org
-  User madduck
-Host albeniz.debian.org | albeniz
-  Hostname albeniz.debian.org
-  User madduck
-Host sperger.debian.org | sperger
-  Hostname sperger.debian.org
-  User madduck
-Host kassia.debian.org | kassia
-  Hostname kassia.debian.org
-  User madduck
-Host agricola.debian.org | agricola
-  Hostname agricola.debian.org
+
+### DEBCONF
+
+Host nelson.debconf.org | penta.debconf.org | nelson | summit | summit.debconf.org
+  Hostname nelson.debconf.org
+  ProxyJump sysyphus.madduck.net
+
+Host itchy.debconf.org | itchy | wafer.debconf.org | wafer
+  Hostname itchy.debconf.org
+  ProxyJump sysyphus.madduck.net
+
+Host kent.debconf.org | kent
+  Hostname kent.debconf.org
+  ProxyJump sysyphus.madduck.net
+
+### TILDE CLUB
+
+Host squiggle.city
+  Hostname squiggle.city
   User madduck
-Host arcadelt.debian.org | arcadelt
-  Hostname arcadelt.debian.org
+
+### NZ
+
+Host workbuffer.org | nz
+  Hostname workbuffer.org
   User madduck
-Host penalosa.debian.org | penalosa
-  Hostname penalosa.debian.org
+
+### MISC
+
+Host github.com | github
+  Hostname github.com
+  User git
+
+Host gitlab.com | gitlab
+  Hostname gitlab.com
+  User git
+
+Host gitlab.debian.net | git.fosscommunity.in
+  Hostname gitlab.debian.net
+  User gitlab
+
+Host grimble.mtfk.de | grimble | mtfk
+  CheckHostIP no
+  Hostname grimble.mtfk.de
+
+Host lion.mjollnir.org | lion
+  Hostname lion.mjollnir.org
   User madduck
-Host argento.debian.org | argento
-  Hostname argento.debian.org
+
+Host files.northdrive.de | idiotheke | seamus.northdrive.de
+  Hostname seamus.northdrive.de
+  Port 37819
+  HostKeyAlias seamus.northdrive.de
   User madduck
-Host allegri.debian.org | allegri
-  Hostname allegri.debian.org
+
+Host clegg.northdrive.de
+  Port 37819
   User madduck
 
-Host sergei.ifi.uzh.ch | sergei
-  Hostname sergei.ifi.uzh.ch
-  User krafft
-Host nikolai.ifi.uzh.ch | nikolai
-  Hostname nikolai.ifi.uzh.ch
-  User krafft
+### DEFAULTS
+
+Match host *.madduck.net
+  StrictHostKeyChecking ask
+  VerifyHostKeyDNS ask
 
 Host *
-# AddressFamily any
-# BatchMode no
-# CheckHostIP yes
-  Cipher blowfish
-# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr
-# ClearAllForwardings no
-# Compression no
-# CompressionLevel 6
-# ConnectionAttempts 1
-  ConnectTimeout 10
+  IgnoreUnknown *
+  ConnectTimeout 30
   ControlPath ~/.var/ssh/ssh_control_%l_%h_%p_%r
   ControlMaster auto
-## DSAAuthentication no
-# DynamicForward off
-# EnableSSHKeysign no
-# EscapeChar ~
-  ExitOnForwardFailure yes
+  ControlPersist 30
+  ExitOnForwardFailure no
   ForwardAgent no
-  ForwardX11 no
-# ForwardX11Trusted yes
-# GatewayPorts no
-# GlobalKnownHostsFile /etc/ssh/ssh_known_hosts
+  #ForwardX11 no
+  #ForwardX11Trusted no
   HashKnownHosts no
-# HostbasedAuthentication no
-  HostKeyAlgorithms ssh-rsa
-# IdentityFile ~/.ssh/identity
-  IdentityFile2 ~/.ssh/id_rsa
-# KbdInteractiveDevices pam
-# LocalCommand none
-# LocalForward none
-# LogLevel INFO
-  MACs hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-sha1-96,hmac-md5,hmac-md5-96
-# NoHostAuthenticationForLocalhost no
   NumberOfPasswordPrompts 2
   PasswordAuthentication yes
-# PermitLocalCommand no
-# Port 22
-# PreferredAuthentications gssapi-with-mic,hostbased,publickey,keyboard-interactive,password
   Protocol 2
-# ProxyCommand
-# PubkeyAuthentication yes
-# RekeyLimit 1G-4G #depends on cipher
-# RemoteForward
-# RhostsRSAAuthentication no
-# RSAAuthentication no
-# ServerAliveCountMax 3
   ServerAliveInterval 45
-  SetupTimeOut 10
-# SmartcardDevice off
   StrictHostKeyChecking yes
-# TCPKeepAlive yes
-# Tunnel no
-# TunnelDevice any:any
-# UsePrivilegedPort no
-# UserKnownHostsFile ~/.ssh/known_hosts
-# VerifyHostKeyDNS no
-# XAuthLocation /usr/X11R6/bin/xauth
+  #UpdateHostKeys no
+  VerifyHostKeyDNS ask
+  VisualHostKey no