X-Git-Url: https://git.madduck.net/etc/ssh.git/blobdiff_plain/7b95626dd464a9619640e8b9fe5930c5da719816..819eb05e3b6ef71570532368c6d7f19630a3d388:/.ssh/config.in diff --git a/.ssh/config.in b/.ssh/config.in index c0bed14..c0aea81 100644 --- a/.ssh/config.in +++ b/.ssh/config.in @@ -1,278 +1,357 @@ Host 127.0.0.1 | localhost - ForwardAgent yes ForwardX11 yes ForwardX11Trusted yes NoHostAuthenticationForLocalhost yes +### ECLIPSE KVM HOST + +Host eclipse.madduck.net | eclipse + Hostname eclipse.madduck.net +Host eclipse-luks + Hostname eclipse.madduck.net + AddressFamily inet + User root + +Host eclipse-fallback.madduck.net | eclipse-fallback + HostKeyAlias eclipse.madduck.net + +Host emily.madduck.net | emily | eclipse-kvm + Hostname emily.madduck.net + +Host matilda.madduck.net | matilda + Hostname matilda.madduck.net +Host irc-host.madduck.net | irc-host + User madduck + HostKeyAlias matilda.madduck.net + Hostname matilda.madduck.net + ConnectTimeout 60 +Host ssh443 + User madduck + HostKeyAlias matilda.madduck.net + Hostname matilda.madduck.net + Port 443 + ConnectTimeout 60 + +Host vizier.madduck.net | vizier + Hostname vizier.madduck.net +Host admin.madduck.net | admin + Hostname admin.madduck.net + HostKeyAlias vizier.madduck.net + User git + +Host ambassador.madduck.net | ambassador + Hostname ambassador.madduck.net + +Host alan.madduck.net | alan + Hostname alan.madduck.net + LocalForward localhost:8390 localhost:8384 +Host git.madduck.net | git + User git + HostKeyAlias alan.madduck.net + +Host swan.madduck.net | swan + Hostname swan.madduck.net + Host pulse.madduck.net | pulse - ForwardAgent yes Hostname pulse.madduck.net -Host svn.madduck.net | svn - User madduck - HostKeyAlias pulse.madduck.net -Host git.madduck.net | git - User madduck - HostKeyAlias pulse.madduck.net + +Host vera.madduck.net | vera + Hostname vera.madduck.net + +Host arnold.madduck.net | arnold + Hostname arnold.madduck.net + +Host seamus.madduck.net | seamus + Hostname seamus.madduck.net + +Host cymbaline.madduck.net | cymbaline + Hostname cymbaline.madduck.net + +Host lunatic.madduck.net | lunatic + Hostname lunatic.madduck.net + +### UNI ZURICH MACHINES + +Host gig.madduck.net | gig | eugene-kvm + Hostname gig.madduck.net + +Host eugene.madduck.net | eugene + Hostname eugene.madduck.net +Host eugene-luks + Hostname eugene.madduck.net + AddressFamily inet + User root + +Host diamond.madduck.net | diamond + Hostname diamond.madduck.net + LocalForward localhost:8389 localhost:8384 + DynamicForward localhost:9041 +Host debian.madduck.net | debian + HostKeyAlias diamond.madduck.net Host scratch.madduck.net | scratch User madduck - HostKeyAlias pulse.madduck.net + HostKeyAlias diamond.madduck.net +Host tunes.madduck.net | tunes + ControlMaster no + Hostname tunes.madduck.net + HostKeyAlias diamond.madduck.net + IPQoS lowdelay af13 +Host flics.madduck.net | flics + ControlMaster no + Hostname flics.madduck.net + HostKeyAlias diamond.madduck.net + IPQoS lowdelay af13 -Host phd.martin-krafft.net - User madduck - HostKeyAlias seamus.madduck.net -Host madduck.net - User madduck - HostKeyAlias seamus.madduck.net +Host shelter.madduck.net | shelter + Hostname shelter.madduck.net +Host backup.madduck.net | backup + HostKeyAlias shelter.madduck.net + +Host gnome.madduck.net | gnome + Hostname gnome.madduck.net + +### DOMINE / VPS2DAY + +Host domine.madduck.net | domine + Hostname domine.madduck.net + DynamicForward localhost:9031 + +### PIPER / BYTEMARK + +Host piper.madduck.net | piper + Hostname piper.madduck.net + +### CIRRUS / HETZNER + +Host cirrus.madduck.net | cirrus + Hostname cirrus.madduck.net + +### GERN + +Host wall.gern.madduck.net | wall.gern | wall + Hostname wall.gern.madduck.net + HostKeyAlias wall.gern.madduck.net + +Host julia.gern.madduck.net | julia.gern | julia + Hostname julia.gern.madduck.net + HostKeyAlias julia.gern.madduck.net + LocalForward localhost:8388 localhost:8384 +Host julia-luks + Hostname julia.gern.madduck.net + AddressFamily inet + User root + +Host kodi.gern.madduck.net | kodi + Hostname kodi.gern.madduck.net + User root + +Host echo.kids.gern | echo.kids | jukebox.kids.gern | jukebox.kids + Hostname echo.kids.gern.madduck.net + HostKeyAlias echo.kids.gern.madduck.net + +Host dyn*.gern.madduck.net | dyn*.*.gern.madduck.net | dyn*.gern | dyn*.*.gern | 10.39.*.* + StrictHostKeyChecking no + UserKnownHostsFile /dev/null + +### KRAFFTWERK + +Host albatross.fo.krafftwerk.de | albatross + HostName albatross.fo.krafftwerk.de + HostKeyAlias albatross.fo.krafftwerk.de + ForwardAgent yes + LocalForward localhost:8387 localhost:8384 + DynamicForward localhost:9049 +Host albatross-luks + HostName albatross.fo.krafftwerk.de + HostKeyAlias albatross.fo.krafftwerk.de + AddressFamily inet + User root + +Host docker.fo.krafftwerk.de | dockerkr + HostName docker.fo.krafftwerk.de + HostKeyAlias docker.fo.krafftwerk.de + +### TONI + +Host gerald.toni.madduck.net | gerald.toni | gerald | gerald.int.toni.immo | martin.int.toni.immo + Hostname gerald.int.toni.immo + HostKeyAlias gerald.toni.madduck.net + ForwardAgent yes + +Host dc01.samba-ad.toni.immo | dc01 + Hostname dc01.samba-ad.toni.immo + HostKeyAlias dc01.samba-ad.toni.immo + +Host pve.int.toni.immo | pve + Hostname pve.int.toni.immo + HostKeyAlias pve.int.toni.immo + +Host pve-crypt + Hostname 192.168.231.10 + Port 60022 + +Host fileserver.int.toni.immo | fileserver + Hostname fileserver.int.toni.immo + HostKeyAlias fileserver.int.toni.immo + +Host postgres.int.toni.immo | postgres + Hostname postgres.int.toni.immo + HostKeyAlias postgres.int.toni.immo + +Host wikijs.int.toni.immo | wikijs + Hostname wikijs.int.toni.immo + HostKeyAlias wikijs.int.toni.immo + +Host nginx.int.toni.immo | nginx | git.int.toni.immo + Hostname nginx.int.toni.immo + HostKeyAlias nginx.int.toni.immo + +Host docker.int.toni.immo | docker + Hostname docker.int.toni.immo + HostKeyAlias docker.int.toni.immo + +Host docspell.int.toni.immo | docspell + Hostname docspell.int.toni.immo + HostKeyAlias docspell.int.toni.immo + +Host paperless.int.toni.immo | paperless + Hostname paperless.int.toni.immo + HostKeyAlias paperless.int.toni.immo + ForwardAgent yes + +Host dovecot.int.toni.immo | dovecot + Hostname dovecot.int.toni.immo + HostKeyAlias dovecot.int.toni.immo + +Host backupserver.int.toni.immo | backupserver + Hostname backupserver.int.toni.immo + HostKeyAlias backupserver.int.toni.immo + +Host cups.int.toni.immo | cups + Hostname cups.int.toni.immo + HostKeyAlias cups.int.toni.immo + +Host checkmk.int.toni.immo | checkmk + Hostname checkmk.int.toni.immo + HostKeyAlias checkmk.int.toni.immo + +Host pve-backups.toni.immo | pve-backups + Hostname pve-backups.toni.immo + HostKeyAlias pve-backups.toni.immo + Port 23 + User u368088 + +### ROAD WARRIORS + +Host lotus.gern + HostName lotus + ConnectTimeout 120 + ForwardAgent yes + ProxyCommand ssh wall.gern.madduck.net "n=30 && while ! nc -w 1 %h %p; do [ \$n -gt 0 ] || exit 1; wakeonlan -i 192.168.39.255 dc:fb:48:35:03:04; printf "%%02d: " \$n >&2; n=\$((\$n-1)); done" + LocalForward localhost:8385 localhost:8384 + +Host lotus.gern-vnc + HostName lotus + ConnectTimeout 120 + ProxyCommand ssh wall.gern.madduck.net "n=30 && while ! nc -w 1 %h %p; do [ \$n -gt 0 ] || exit 1; wakeonlan -i 192.168.39.255 dc:fb:48:35:03:04; printf "%%02d: " \$n >&2; n=\$((\$n-1)); done" + LocalForward localhost:8385 localhost:8384 + RemoteCommand pkill x11vnc; x11vnc -display :0 -nopw -localhost -norepeat -gone '/usr/bin/xautolock -locknow' + +Host lotus.* | lotus + CheckHostIP no + HostKeyAlias lotus + ForwardAgent yes + HostName lotus.fo.krafftwerk.de + LocalForward localhost:8385 localhost:8384 + +Host lotus-vnc + HostName lotus.fo.krafftwerk.de + HostKeyAlias lotus + ConnectTimeout 120 + LocalForward localhost:5960 localhost:5900 + RemoteCommand pkill x11vnc; x11vnc -display :0 -nopw -localhost -norepeat -gone '/usr/bin/xautolock -locknow' -Host lapse.madduck.net | lapse.oerlikon.madduck.net | lapse +Host emerald | emerald.kids.gern | emerald.rw.madduck.net CheckHostIP no + HostKeyAlias emerald + HostName emerald.kids.gern + LocalForward localhost:5932 localhost:5900 -Host wall.madduck.net | wall.oerlikon.madduck.net | oerlikon.no-up.org | wall +Host lelina | lelina.kids.gern | lelina.rw.madduck.net CheckHostIP no + HostKeyAlias lelina + HostName lelina.kids.gern + LocalForward localhost:5931 localhost:5900 -Host embryo.madduck.net | embryo.gauting.madduck.net | gauting.no-ip.org | embryo +Host mother + HostKeyAlias mother + Hostname mother.rw.vpn.madduck.net CheckHostIP no -Host debian-community.org | bikeshed.debian-community.org | bikeshed - Hostname bikeshed.debian-community.org - User madduck - ForwardAgent no - ForwardX11 no +### TILDE CLUB -Host alioth.debian.org | alioth - Hostname alioth.debian.org - User madduck -Host svn.debian.org - HostKeyAlias alioth.debian.org -Host git.debian.org - HostKeyAlias alioth.debian.org -Host hg.debian.org - HostKeyAlias alioth.debian.org - -Host vore.debian.org | vore - Hostname vore.debian.org - User madduck -Host malo.debian.org | malo - Hostname malo.debian.org - User madduck -Host paer.debian.org | paer - Hostname paer.debian.org - User madduck -Host crest.debian.org | crest - Hostname crest.debian.org - User madduck -Host saens.debian.org | saens - Hostname saens.debian.org - User madduck -Host spohr.debian.org | spohr - Hostname spohr.debian.org - User madduck -Host auric.debian.org | auric - Hostname auric.debian.org - User madduck -Host gluck.debian.org | gluck - Hostname gluck.debian.org - User madduck -Host elara.debian.org | elara - Hostname elara.debian.org - User madduck -Host sarti.debian.org | sarti - Hostname sarti.debian.org - User madduck -Host europa.debian.org | europa - Hostname europa.debian.org - User madduck -Host goedel.debian.org | goedel - Hostname goedel.debian.org - User madduck -Host casals.debian.org | casals - Hostname casals.debian.org - User madduck -Host master.debian.org | master - Hostname master.debian.org - User madduck -Host bartok.debian.org | bartok - Hostname bartok.debian.org - User madduck -Host merulo.debian.org | merulo - Hostname merulo.debian.org - User madduck -Host merkel.debian.org | merkel - Hostname merkel.debian.org - User madduck -Host murphy.debian.org | murphy - Hostname murphy.debian.org - User madduck -Host escher.debian.org | escher - Hostname escher.debian.org - User madduck -Host raptor.debian.org | raptor - Hostname raptor.debian.org - User madduck -Host tartini.debian.org | tartini - Hostname tartini.debian.org - User madduck -Host raff.debian.org | raff - Hostname raff.debian.org - User madduck -Host klecker.debian.org | klecker - Hostname klecker.debian.org - User madduck -Host vaughan.debian.org | vaughan - Hostname vaughan.debian.org - User madduck -Host voltaire.debian.org | voltaire - Hostname voltaire.debian.org - User madduck -Host bruckner.debian.org | bruckner - Hostname bruckner.debian.org - User madduck -Host kullervo.debian.org | kullervo - Hostname kullervo.debian.org - User madduck -Host kullervo.debian.org | kullervo - Hostname kullervo.debian.org - User madduck -Host samosa.debian.org | samosa - Hostname samosa.debian.org +Host squiggle.city + Hostname squiggle.city User madduck -Host caballero.debian.org | caballero - Hostname caballero.debian.org - User madduck -Host pergolesi.debian.org | pergolesi - Hostname pergolesi.debian.org - User madduck -Host spontini.debian.org | spontini - Hostname spontini.debian.org - User madduck -Host mayr.debian.org | mayr - Hostname mayr.debian.org - User madduck -Host mayer.debian.org | mayer - Hostname mayer.debian.org - User madduck -Host agnesi.debian.org | agnesi - Hostname agnesi.debian.org - User madduck -Host puccini.debian.org | puccini - Hostname puccini.debian.org - User madduck -Host villa.debian.org | villa - Hostname villa.debian.org - User madduck -Host piatti.debian.org | piatti - Hostname piatti.debian.org - User madduck -Host peri.debian.org | peri - Hostname peri.debian.org - User madduck -Host lobos.debian.org | lobos - Hostname lobos.debian.org - User madduck -Host verdi.debian.org | verdi - Hostname verdi.debian.org - User madduck -Host ries.debian.org | ries - Hostname ries.debian.org - User madduck -Host goetz.debian.org | goetz - Hostname goetz.debian.org - User madduck -Host rietz.debian.org | rietz - Hostname rietz.debian.org - User madduck -Host steffani.debian.org | steffani - Hostname steffani.debian.org - User madduck -Host lebrun.debian.org | lebrun - Hostname lebrun.debian.org - User madduck -Host liszt.debian.org | liszt - Hostname liszt.debian.org - User madduck -Host mundy.debian.org | mundy - Hostname mundy.debian.org - User madduck -Host albeniz.debian.org | albeniz - Hostname albeniz.debian.org - User madduck -Host sperger.debian.org | sperger - Hostname sperger.debian.org - User madduck -Host kassia.debian.org | kassia - Hostname kassia.debian.org + +Host tilde.club + Hostname tilde.club User madduck -Host agricola.debian.org | agricola - Hostname agricola.debian.org + +### MISC + +Host nz + Hostname 202.78.240.196 User madduck -Host arcadelt.debian.org | arcadelt - Hostname arcadelt.debian.org + DynamicForward localhost:9064 + +Host github.com | github + Hostname github.com + User git + +Host gitlab.com | gitlab + Hostname gitlab.com + User git + +Host gitlab.debian.net | git.fosscommunity.in + Hostname gitlab.debian.net + User gitlab + +Host lion.mjollnir.org | lion + Hostname lion.mjollnir.org User madduck -Host penalosa.debian.org | penalosa - Hostname penalosa.debian.org + +Host files.northdrive.de | idiotheke | seamus.northdrive.de + Hostname seamus.northdrive.de + Port 37819 + HostKeyAlias seamus.northdrive.de User madduck -Host argento.debian.org | argento - Hostname argento.debian.org + +Host clegg.northdrive.de + Port 37819 User madduck -Host allegri.debian.org | allegri - Hostname allegri.debian.org + +### DEFAULTS + +Match host *.madduck.net + StrictHostKeyChecking ask + +Match host *.debian.org + StrictHostKeyChecking ask User madduck Host * -# AddressFamily any -# BatchMode no -# CheckHostIP yes - Cipher blowfish -# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr -# ClearAllForwardings no -# Compression no -# CompressionLevel 6 -# ConnectionAttempts 1 - ConnectTimeout 10 - ControlPath ~/.var/ssh/ssh_control_%l_%h_%p_%r + IgnoreUnknown * + ConnectTimeout 30 + ControlPath ~/.var/ssh/ssh_control_%l_%k_%p_%r ControlMaster auto -## DSAAuthentication no -# DynamicForward off -# EnableSSHKeysign no -# EscapeChar ~ - ExitOnForwardFailure yes + ControlPersist 30 + ExitOnForwardFailure no ForwardAgent no - ForwardX11 no -# ForwardX11Trusted yes -# GatewayPorts no -# GlobalKnownHostsFile /etc/ssh/ssh_known_hosts HashKnownHosts no -# HostbasedAuthentication no - HostKeyAlgorithms ssh-rsa -# IdentityFile ~/.ssh/identity - IdentityFile2 ~/.ssh/id_rsa -# KbdInteractiveDevices pam -# LocalCommand none -# LocalForward none -# LogLevel INFO - MACs hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-sha1-96,hmac-md5,hmac-md5-96 -# NoHostAuthenticationForLocalhost no NumberOfPasswordPrompts 2 PasswordAuthentication yes -# PermitLocalCommand no -# Port 22 -# PreferredAuthentications gssapi-with-mic,hostbased,publickey,keyboard-interactive,password - Protocol 2 -# ProxyCommand -# PubkeyAuthentication yes -# RekeyLimit 1G-4G #depends on cipher -# RemoteForward -# RhostsRSAAuthentication no -# RSAAuthentication no -# ServerAliveCountMax 3 -# ServerAliveInterval 45 - SetupTimeOut 10 -# SmartcardDevice off + ServerAliveInterval 45 StrictHostKeyChecking yes -# TCPKeepAlive yes -# Tunnel no -# TunnelDevice any:any -# UsePrivilegedPort no -# UserKnownHostsFile ~/.ssh/known_hosts -# VerifyHostKeyDNS no -# XAuthLocation /usr/X11R6/bin/xauth + VerifyHostKeyDNS ask + VisualHostKey no