]> git.madduck.net Git - etc/ssh.git/blobdiff - .ssh/config.in

madduck's git repository

Every one of the projects in this repository is available at the canonical URL git://git.madduck.net/madduck/pub/<projectpath> — see each project's metadata for the exact URL.

All patches and comments are welcome. Please squash your changes to logical commits before using git-format-patch and git-send-email to patches@git.madduck.net. If you'd read over the Git project's submission guidelines and adhered to them, I'd be especially grateful.

SSH access, as well as push access can be individually arranged.

If you use my repositories frequently, consider adding the following snippet to ~/.gitconfig and using the third clone URL listed for each project:

[url "git://git.madduck.net/madduck/"]
  insteadOf = madduck:

lotus wakeonlan proxy
[etc/ssh.git] / .ssh / config.in
index a77ebcdbe61c44c7439f02ede6078ac828643e90..6c33ac4f1d2b9ae5abc69093cbd13990cc21369e 100644 (file)
 Host 127.0.0.1 | localhost
-  ForwardAgent yes
   ForwardX11 yes
   ForwardX11Trusted yes
   NoHostAuthenticationForLocalhost yes
 
-### CHARADE KVM HOST
+### ECLIPSE KVM HOST
 
-Host charade.madduck.net | charade
-  ForwardAgent yes
-  Hostname charade.madduck.net
-Host charade-vnc
-  ControlMaster no
-  ControlPath none
-  Hostname charade.madduck.net
+Host eclipse.madduck.net | eclipse
+  Hostname eclipse.madduck.net
+Host eclipse-luks
+  Hostname eclipse.madduck.net
+  AddressFamily inet
+  User root
+
+Host eclipse-fallback.madduck.net | eclipse-fallback
+  HostKeyAlias eclipse.madduck.net
+
+Host emily.madduck.net | emily | eclipse-kvm
+  Hostname emily.madduck.net
 
 Host matilda.madduck.net | matilda
-  ForwardAgent yes
   Hostname matilda.madduck.net
+Host irc-host.madduck.net | irc-host
+  User madduck
+  HostKeyAlias matilda.madduck.net
+  Hostname matilda.madduck.net
+  ConnectTimeout 60
+Host ssh443
+  User madduck
+  HostKeyAlias matilda.madduck.net
+  Hostname matilda.madduck.net
+  Port 443
+  ConnectTimeout 60
 
-### KHYBER KVM HOST
+Host vizier.madduck.net | vizier
+  Hostname vizier.madduck.net
+Host admin.madduck.net | admin
+  Hostname admin.madduck.net
+  HostKeyAlias vizier.madduck.net
+  User git
 
-Host khyber.madduck.net | khyber
-  ForwardAgent yes
-  Hostname khyber.madduck.net
-Host khyber-vnc
-  ControlMaster no
-  ControlPath none
-  Hostname khyber.madduck.net
+Host ambassador.madduck.net | ambassador
+  Hostname ambassador.madduck.net
 
-Host lotus.madduck.net | lotus
-  ForwardAgent yes
-  Hostname lotus.madduck.net
+Host alan.madduck.net | alan
+  Hostname alan.madduck.net
+  LocalForward localhost:8390 localhost:8384
 Host git.madduck.net | git
   User git
-  HostKeyAlias lotus.madduck.net
-Host git.debian.ch
-  User git
-  HostKeyAlias lotus.madduck.net
-Host martin-krafft.net
-  User madduck
-  HostKeyAlias lotus.madduck.net
-Host phd.martin-krafft.net
-  User madduck
-  HostKeyAlias lotus.madduck.net
-Host madduck.net
-  User madduck
-  HostKeyAlias lotus.madduck.net
+  HostKeyAlias alan.madduck.net
 
-Host jugband.madduck.net | jugband
-  ForwardAgent yes
-  Hostname jugband.madduck.net
+Host swan.madduck.net | swan
+  Hostname swan.madduck.net
 
-Host domine.madduck.net | domine
-  ForwardAgent yes
-  Hostname domine.madduck.net
-Host irc
-  User madduck
-  Hostname domine.madduck.net
-  ConnectTimeout 60
-Host imap.madduck.net
-  HostKeyAlias domine.madduck.net
+Host pulse.madduck.net | pulse
+  Hostname pulse.madduck.net
 
-Host aika.krafftwerk.de | aika
-  Hostname aika.krafftwerk.de
+Host vera.madduck.net | vera
+  Hostname vera.madduck.net
 
-Host vizier.madduck.net | vizier
-  ForwardAgent yes
-  Hostname vizier.madduck.net
+Host arnold.madduck.net | arnold
+  Hostname arnold.madduck.net
 
-Host sysyphus.madduck.net | sysyphus
-  ForwardAgent yes
-  Hostname sysyphus.madduck.net
-Host ssh443.madduck.net | ssh443
-  HostKeyAlias sysyphus.madduck.net
-  ForwardAgent yes
-  Port 443
-Host openvpn.madduck.net | openvpn
-  HostKeyAlias sysyphus.madduck.net
+Host seamus.madduck.net | seamus
+  Hostname seamus.madduck.net
+
+Host cymbaline.madduck.net | cymbaline
+  Hostname cymbaline.madduck.net
 
-Host wots.madduck.net | wots
-  ForwardAgent yes
-  Hostname wots.madduck.net
-Host buildd.debian.madduck.net | buildd
-  HostKeyAlias wots.madduck.net
+Host lunatic.madduck.net | lunatic
+  Hostname lunatic.madduck.net
 
 ### UNI ZURICH MACHINES
 
+Host gig.madduck.net | gig | eugene-kvm
+  Hostname gig.madduck.net
+
+Host eugene.madduck.net | eugene
+  Hostname eugene.madduck.net
+Host eugene-luks
+  Hostname eugene.madduck.net
+  AddressFamily inet
+  User root
+
 Host diamond.madduck.net | diamond
-  ForwardAgent yes
   Hostname diamond.madduck.net
+  LocalForward localhost:8389 localhost:8384
+  DynamicForward localhost:9041
 Host debian.madduck.net | debian
   HostKeyAlias diamond.madduck.net
 Host scratch.madduck.net | scratch
   User madduck
   HostKeyAlias diamond.madduck.net
 Host tunes.madduck.net | tunes
-  AddressFamily inet
   ControlMaster no
   Hostname tunes.madduck.net
   HostKeyAlias diamond.madduck.net
   IPQoS lowdelay af13
 Host flics.madduck.net | flics
-  AddressFamily inet
   ControlMaster no
   Hostname flics.madduck.net
   HostKeyAlias diamond.madduck.net
   IPQoS lowdelay af13
 
 Host shelter.madduck.net | shelter
-  ForwardAgent yes
   Hostname shelter.madduck.net
 Host backup.madduck.net | backup
   HostKeyAlias shelter.madduck.net
 
-Host sergei.ifi.uzh.ch | sergei
-  Hostname sergei.ifi.uzh.ch
-  User krafft
-Host nikolai.ifi.uzh.ch | nikolai
-  Hostname nikolai.ifi.uzh.ch
-  User krafft
-Host franz.ifi.uzh.ch | franz
-  Hostname franz.ifi.uzh.ch
-  User krafft
+Host gnome.madduck.net | gnome
+  Hostname gnome.madduck.net
 
-### SWAN / BYTEMARK
+### DOMINE / VPS2DAY
 
-Host swan-host | swan-host.madduck.net
-  Hostname swan-host.madduck.net
-  User krafft
+Host domine.madduck.net | domine
+  Hostname domine.madduck.net
+  DynamicForward localhost:9031
 
-Host swan.madduck.net | swan
-  ForwardAgent yes
-  Hostname swan.madduck.net
+### PIPER / BYTEMARK
 
-### ARNOLD / GPLHOST
-#
-Host arnold-host | arnold-host.madduck.net
-  Hostname arnold-host.madduck.net
-  User xen05
+Host piper.madduck.net | piper
+  Hostname piper.madduck.net
 
-### GERN
+### CIRRUS / HETZNER
 
-Host wall.gern.madduck.net | wall
-  CheckHostIP no
-  ForwardAgent yes
-  Hostname wall.gern.madduck.net
+Host cirrus.madduck.net | cirrus
+  Hostname cirrus.madduck.net
 
-Host julia.gern.madduck.net | julia
-  Hostname julia.gern.madduck.net
-  ForwardAgent yes
-Host juliae
-  Hostname wall.gern.madduck.net
-  Port 22002
+### LEHEL
+
+Host clegg.lehel.madduck.net | clegg.lehel | clegg
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias julia.gern.madduck.net
+  Hostname clegg.lehel.madduck.net
 
-Host albatross.lehel.madduck.net | albatross
+Host albatross.lehel.madduck.net | albatross.lehel | albatross
   Hostname albatross.lehel.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
-Host albatrosse
+  HostKeyAlias albatross.lehel
+  LocalForward localhost:8387 localhost:8384
+  DynamicForward localhost:9049
+Host albatross-luks
+  Hostname albatross.lehel.madduck.net
+  AddressFamily inet
+  User root
+
+Host albatross-via-clegg | ralbatross
+  Hostname albatross.lehel.madduck.net
+  ProxyJump clegg.dyndns.madduck.net
+  AddressFamily inet
+  LocalForward localhost:8387 localhost:8384
+  DynamicForward localhost:9049
+
+Host bike.lehel.madduck.net | bike.lehel | bike | clegg-kvm
+  Hostname bike.lehel.madduck.net
+  HostKeyAlias bike.lehel
+
+Host visitor*.lehel.madduck.net | visitor*.lehel
+  StrictHostKeyChecking no
+  UserKnownHostsFile /dev/null
+
+### GERN
+
+Host wall.gern.madduck.net | wall.gern | wall
   Hostname wall.gern.madduck.net
-  Port 22032
-  CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias albatross.lehel.madduck.net
+  HostKeyAlias wall.gern.madduck.net
 
-Host galaxy-s2.phones.gern | galaxy-s2
-  Hostname galaxy-s2.phones.gern
-  HostKeyAlias galaxy-s2.phones.gern
+Host julia.gern.madduck.net | julia.gern | julia
+  Hostname julia.gern.madduck.net
+  HostKeyAlias julia.gern.madduck.net
+  LocalForward localhost:8388 localhost:8384
+Host julia-luks
+  Hostname julia.gern.madduck.net
+  AddressFamily inet
   User root
 
-Host pict.gern.madduck.net | pict
-  Hostname pict.gern.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
+Host kodi.gern.madduck.net | kodi
+  Hostname kodi.gern.madduck.net
+  User root
 
-Host visitor*.gern.madduck.net | visitor*.gern | visitor*
+Host echo.kids.gern | echo.kids | jukebox.kids.gern | jukebox.kids
+  Hostname echo.kids.gern.madduck.net
+  HostKeyAlias echo.kids.gern.madduck.net
+
+Host visitor*.gern.madduck.net | visitor*.gern
   StrictHostKeyChecking no
   UserKnownHostsFile /dev/null
 
-### LEHEL
+### ROAD WARRIORS
 
-Host clegg.lehel.madduck.net | clegg
+Host lotus.*
   CheckHostIP no
-  ForwardAgent yes
-  Hostname clegg.lehel.madduck.net
-
-### GAUTING
+  HostKeyAlias lotus
+  LocalForward localhost:8385 localhost:8384
 
-Host embryo.gauting.madduck.net | embryo
+Host lotus | lotus.rw.madduck.net
   CheckHostIP no
-  ForwardAgent yes
-  Hostname embryo.gauting.madduck.net
-  HostKeyAlias embryo.gauting.madduck.net
-
-Host mother.gauting | mother | mother.gauting.madduck.net
-  Hostname mother.gauting
-  ForwardAgent yes
-  ForwardX11 yes
-Host mothere
-  Hostname embryo.gauting.madduck.net
-  Port 22221
+  HostKeyAlias lotus
+  ConnectTimeout 120
+  ProxyCommand ssh wall.gern.madduck.net "wakeonlan -i 192.168.39.255 dc:fb:48:35:03:04 && n=30 && while ! nc -w 1 %h %p; do [ \$n -gt 0 ] || exit 1; printf "%%02d: " \$n >&2; n=\$((\$n-1)); done"
+  #ProxyCommand bash -c "TARGETS=$( (TRIES=%h.{gern,lehel,rw}.madduck.net; eval fping -aAC1 -t500 $TRIES 2>&1 & eval fping6 -aAC1 -t500 $TRIES 2>&1; wait) | sed -rne 's, : ([[:digit:]]), @\1,p' | sort -t@ -k2n | sed -ne 's, .*,,p' | tr '\n' ','); echo Targets: \$TARGETS using \${TARGETS%%%%,*} … >&2; exec nc -F -vq0 \${TARGETS%%%%,*} %p"
+  #ProxyUseFdpass yes
+  LocalForward localhost:8385 localhost:8384
+
+Host ini | ini.dyndns.madduck.net
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias mother.gauting.madduck.net
+  HostKeyAlias ini.dyndns.madduck.net
+  HostName ini.dyndns.madduck.net
+  Port 13579
+  User christine
 
-Host brick.gauting.madduck.net | brick
-  Hostname brick.gauting.madduck.net
-  ForwardAgent yes
-  ForwardX11 yes
-Host bricke
-  Hostname embryo.gauting.madduck.net
-  Port 22222
+Host emerald | emerald.kids.gern | emerald.rw.madduck.net
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
-  HostKeyAlias brick.gauting.madduck.net
+  HostKeyAlias emerald
+  HostName emerald.kids.gern
+  LocalForward localhost:5932 localhost:5900
 
-### ROAD WARRIORS
-
-Host lapse.rw.madduck.net | lapse.gern.madduck.net | lapse
+Host lelina | lelina.kids.gern | lelina.rw.madduck.net
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
+  HostKeyAlias lelina
+  HostName lelina.kids.gern
+  LocalForward localhost:5931 localhost:5900
 
-Host fishbowl.rw.madduck.net | fishbowl.gern.madduck.net | fishbowl
+Host mother
+  HostKeyAlias mother
+  Hostname mother.rw.vpn.madduck.net
   CheckHostIP no
-  ForwardAgent yes
-  ForwardX11 yes
 
-### DEBIAN
+### TILDE CLUB
 
-Host svn.debian.org
-  HostKeyAlias vasks.debian.org
-  User madduck
-Host git.debian.org
-  HostKeyAlias vasks.debian.org
-  User madduck
-Host hg.debian.org
-  HostKeyAlias vasks.debian.org
-  User madduck
-Host cvs.debian.org
-  HostKeyAlias vasks.debian.org
+Host squiggle.city
+  Hostname squiggle.city
   User madduck
 
-Host people.debian.org
-  HostKeyAlias ravel.debian.org
+Host tilde.club
+  Hostname tilde.club
   User madduck
 
-Host abel.debian.org | abel
-  Hostname abel.debian.org
-  User madduck
-Host agricola.debian.org | agricola
-  Hostname agricola.debian.org
-  User madduck
-Host albeniz.debian.org | albeniz
-  Hostname albeniz.debian.org
-  User madduck
-Host asdfasdf.debian.net | asdfasdf
-  Hostname asdfasdf.debian.net
-  User madduck
-Host busoni.debian.org | busoni
-  Hostname busoni.debian.org
-  User madduck
-Host cilea.debian.org | cilea
-  Hostname cilea.debian.org
-  User madduck
-Host duarte.debian.org | duarte
-  Hostname duarte.debian.org
-  User madduck
-Host dukas.debian.org | dukas
-  Hostname dukas.debian.org
-  User madduck
-Host glinka.debian.org | glinka
-  Hostname glinka.debian.org
-  User madduck
-Host grieg.debian.org | grieg
-  Hostname grieg.debian.org
-  User madduck
-Host io.debian.net | io
-  Hostname io.debian.net
-  User madduck
-Host lindberg.debian.org | lindberg
-  Hostname lindberg.debian.org
-  User madduck
-Host master.debian.org | master
-  Hostname master.debian.org
-  User madduck
-Host merulo.debian.org | merulo
-  Hostname merulo.debian.org
-  User madduck
-Host nono.debian.org | nono
-  Hostname nono.debian.org
-  User madduck
-Host paer.debian.org | paer
-  Hostname paer.debian.org
-  User madduck
-Host paganini.debian.org | paganini
-  Hostname paganini.debian.org
-  User madduck
-Host pergolesi.debian.org | pergolesi
-  Hostname pergolesi.debian.org
-  User madduck
-Host pescetti.debian.org | pescetti
-  Hostname pescetti.debian.org
-  User madduck
-Host piatti.debian.org | piatti
-  Hostname piatti.debian.org
-  User madduck
-Host powell.debian.org | powell
-  Hostname powell.debian.org
-  User madduck
-Host quantz.debian.org | quantz
-  Hostname quantz.debian.org
-  User madduck
-Host ravel.debian.org | ravel
-  Hostname ravel.debian.org
-  User madduck
-Host respighi.debian.org | respighi
-  Hostname respighi.debian.org
-  User madduck
-Host ries.debian.org | ries
-  Hostname ries.debian.org
-  User madduck
-Host rore.debian.org | rore
-  Hostname rore.debian.org
-  User madduck
-Host samosa.debian.org | samosa
-  Hostname samosa.debian.org
-  User madduck
-Host senfl.debian.org | senfl
-  Hostname senfl.debian.org
-  User madduck
-Host sh4.g15.jp | sh4
-  Hostname sh4.g15.jp
-  User madduck
-Host smetana.debian.org | smetana
-  Hostname smetana.debian.org
-  User madduck
-Host sperger.debian.org | sperger
-  Hostname sperger.debian.org
-  User madduck
-Host stabile.debian.org | stabile
-  Hostname stabile.debian.org
-  User madduck
-Host strauss.debian.net | strauss
-  Hostname strauss.debian.net
-  User madduck
-Host sumotsu.debian.net | sumotsu
-  Hostname sumotsu.debian.net
-  User madduck
-Host tye.debian.org | tye
-  Hostname tye.debian.org
-  User madduck
-Host vasks.debian.org | vasks
-  Hostname vasks.debian.org
-  User madduck
-Host vivaldi.debian.org | vivaldi
-  Hostname vivaldi.debian.org
-  User madduck
-Host wagner.debian.org | wagner
-  Hostname wagner.debian.org
-  User madduck
-Host widor.debian.org | widor
-  Hostname widor.debian.org
-  User madduck
-Host zelenka.debian.org | zelenka
-  Hostname zelenka.debian.org
-  User madduck
-
-### NZ
+### MISC
 
-Host workbuffer.org | nz
-  Hostname workbuffer.org
+Host nz
+  Hostname 202.78.240.196
   User madduck
 
-### MISC
-
 Host github.com | github
   Hostname github.com
   User git
 
+Host gitlab.com | gitlab
+  Hostname gitlab.com
+  User git
+
+Host gitlab.debian.net | git.fosscommunity.in
+  Hostname gitlab.debian.net
+  User gitlab
+
+Host lion.mjollnir.org | lion
+  Hostname lion.mjollnir.org
+  User madduck
+
+Host files.northdrive.de | idiotheke | seamus.northdrive.de
+  Hostname seamus.northdrive.de
+  Port 37819
+  HostKeyAlias seamus.northdrive.de
+  User madduck
+
+Host clegg.northdrive.de
+  Port 37819
+  User madduck
+
 ### DEFAULTS
 
+Match host *.madduck.net
+  StrictHostKeyChecking ask
+
+Match host *.debian.org
+  StrictHostKeyChecking ask
+  User madduck
+
 Host *
-# AddressFamily any
-# BatchMode no
-# CheckHostIP yes
-  Cipher blowfish
-# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr
-# ClearAllForwardings no
-# Compression no
-# CompressionLevel 6
-# ConnectionAttempts 1
-  ConnectTimeout 10
+  IgnoreUnknown *
+  ConnectTimeout 30
   ControlPath ~/.var/ssh/ssh_control_%l_%h_%p_%r
   ControlMaster auto
-  ControlPersist 5
-## DSAAuthentication no
-# DynamicForward off
-# EnableSSHKeysign no
-# EscapeChar ~
-  ExitOnForwardFailure yes
+  ControlPersist 30
+  ExitOnForwardFailure no
   ForwardAgent no
-  ForwardX11 no
-# ForwardX11Trusted yes
-# GatewayPorts no
-# GlobalKnownHostsFile /etc/ssh/ssh_known_hosts
   HashKnownHosts no
-# HostbasedAuthentication no
-  HostKeyAlgorithms ssh-rsa
-# IdentityFile ~/.ssh/identity
-  IdentityFile2 ~/.ssh/id_rsa
-  IPQoS lowdelay throughput
-# KbdInteractiveDevices pam
-# LocalCommand none
-# LocalForward none
-# LogLevel INFO
-  MACs hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-sha1-96,hmac-md5,hmac-md5-96
-# NoHostAuthenticationForLocalhost no
   NumberOfPasswordPrompts 2
   PasswordAuthentication yes
-# PermitLocalCommand no
-# Port 22
-# PreferredAuthentications gssapi-with-mic,hostbased,publickey,keyboard-interactive,password
-  Protocol 2
-# ProxyCommand
-# PubkeyAuthentication yes
-# RekeyLimit 1G-4G #depends on cipher
-# RemoteForward
-# RhostsRSAAuthentication no
-# RSAAuthentication no
-# ServerAliveCountMax 3
   ServerAliveInterval 45
-  SetupTimeOut 10
-# SmartcardDevice off
   StrictHostKeyChecking yes
-# TCPKeepAlive yes
-# Tunnel no
-# TunnelDevice any:any
-# UsePrivilegedPort no
-# UserKnownHostsFile ~/.ssh/known_hosts
-# VerifyHostKeyDNS no
+  VerifyHostKeyDNS ask
   VisualHostKey no
-# XAuthLocation /usr/X11R6/bin/xauth