X-Git-Url: https://git.madduck.net/etc/ssh.git/blobdiff_plain/919bfb65cea1c2a00b77046abc3f8a4ad914e558..2138841924bdd5572b2b332b06e2b0f94fdb18e5:/.ssh/config.in?ds=inline diff --git a/.ssh/config.in b/.ssh/config.in index 049362d..6bf6118 100644 --- a/.ssh/config.in +++ b/.ssh/config.in @@ -1,457 +1,292 @@ Host 127.0.0.1 | localhost - ForwardAgent yes ForwardX11 yes ForwardX11Trusted yes NoHostAuthenticationForLocalhost yes -### CHARADE KVM HOST +### ECLIPSE KVM HOST -Host charade.madduck.net | charade - ForwardAgent yes - Hostname charade.madduck.net -Host charade-vnc - ControlMaster no - ControlPath none - Hostname charade.madduck.net +Host eclipse.madduck.net | eclipse + Hostname eclipse.madduck.net +Host eclipse-luks + Hostname eclipse.madduck.net + AddressFamily inet + User root + +Host eclipse-fallback.madduck.net | eclipse-fallback + HostKeyAlias eclipse.madduck.net + +Host emily.madduck.net | emily | eclipse-kvm + Hostname emily.madduck.net Host matilda.madduck.net | matilda - ForwardAgent yes Hostname matilda.madduck.net +Host irc-host.madduck.net | irc-host + User madduck + HostKeyAlias matilda.madduck.net + Hostname matilda.madduck.net + ConnectTimeout 60 +Host ssh443 + User madduck + HostKeyAlias matilda.madduck.net + Hostname matilda.madduck.net + Port 443 + ConnectTimeout 60 Host vizier.madduck.net | vizier - ForwardAgent yes Hostname vizier.madduck.net +Host admin.madduck.net | admin + Hostname admin.madduck.net + HostKeyAlias vizier.madduck.net + User git -### KHYBER KVM HOST - -Host khyber.madduck.net | khyber - ForwardAgent yes - Hostname khyber.madduck.net -Host khyber-vnc - ControlMaster no - ControlPath none - Hostname khyber.madduck.net +Host ambassador.madduck.net | ambassador + Hostname ambassador.madduck.net -Host lotus.madduck.net | lotus - ForwardAgent yes - Hostname lotus.madduck.net +Host alan.madduck.net | alan + Hostname alan.madduck.net + LocalForward localhost:8390 localhost:8384 Host git.madduck.net | git User git - HostKeyAlias lotus.madduck.net -Host git.debian.ch - User git - HostKeyAlias lotus.madduck.net -Host martin-krafft.net - User madduck - HostKeyAlias lotus.madduck.net -Host phd.martin-krafft.net - User madduck - HostKeyAlias lotus.madduck.net -Host madduck.net - User madduck - HostKeyAlias lotus.madduck.net + HostKeyAlias alan.madduck.net -Host jugband.madduck.net | jugband - ForwardAgent yes - Hostname jugband.madduck.net +Host swan.madduck.net | swan + Hostname swan.madduck.net -Host domine.madduck.net | domine - ForwardAgent yes - Hostname domine.madduck.net -Host irc - User madduck - Hostname domine.madduck.net - ConnectTimeout 60 -Host imap.madduck.net - HostKeyAlias domine.madduck.net - -Host aika.krafftwerk.de | aika - Hostname aika.krafftwerk.de - -Host sysyphus.madduck.net | sysyphus - ForwardAgent yes - Hostname sysyphus.madduck.net -Host ssh443.madduck.net | ssh443 - HostKeyAlias sysyphus.madduck.net - ForwardAgent yes - Port 443 -Host openvpn.madduck.net | openvpn - HostKeyAlias sysyphus.madduck.net +Host pulse.madduck.net | pulse + Hostname pulse.madduck.net + +Host vera.madduck.net | vera + Hostname vera.madduck.net + +Host arnold.madduck.net | arnold + Hostname arnold.madduck.net -Host wots.madduck.net | wots - ForwardAgent yes - Hostname wots.madduck.net -Host buildd.debian.madduck.net | buildd - HostKeyAlias wots.madduck.net +Host seamus.madduck.net | seamus + Hostname seamus.madduck.net + +Host cymbaline.madduck.net | cymbaline + Hostname cymbaline.madduck.net + +Host lunatic.madduck.net | lunatic + Hostname lunatic.madduck.net ### UNI ZURICH MACHINES +Host gig.madduck.net | gig | eugene-kvm + Hostname gig.madduck.net + +Host eugene.madduck.net | eugene + Hostname eugene.madduck.net +Host eugene-luks + Hostname eugene.madduck.net + AddressFamily inet + User root + Host diamond.madduck.net | diamond - ForwardAgent yes Hostname diamond.madduck.net + LocalForward localhost:8389 localhost:8384 + DynamicForward localhost:9041 Host debian.madduck.net | debian HostKeyAlias diamond.madduck.net Host scratch.madduck.net | scratch User madduck HostKeyAlias diamond.madduck.net Host tunes.madduck.net | tunes - AddressFamily inet ControlMaster no Hostname tunes.madduck.net HostKeyAlias diamond.madduck.net IPQoS lowdelay af13 Host flics.madduck.net | flics - AddressFamily inet ControlMaster no Hostname flics.madduck.net HostKeyAlias diamond.madduck.net IPQoS lowdelay af13 Host shelter.madduck.net | shelter - ForwardAgent yes Hostname shelter.madduck.net Host backup.madduck.net | backup HostKeyAlias shelter.madduck.net -Host sergei.ifi.uzh.ch | sergei - Hostname sergei.ifi.uzh.ch - User krafft -Host nikolai.ifi.uzh.ch | nikolai - Hostname nikolai.ifi.uzh.ch - User krafft -Host franz.ifi.uzh.ch | franz - Hostname franz.ifi.uzh.ch - User krafft +Host gnome.madduck.net | gnome + Hostname gnome.madduck.net -### SWAN / BYTEMARK +### DOMINE / VPS2DAY -Host swan-host | swan-host.madduck.net - Hostname swan-host.madduck.net - User krafft +Host domine.madduck.net | domine + Hostname domine.madduck.net + DynamicForward localhost:9031 -Host swan.madduck.net | swan - ForwardAgent yes - Hostname swan.madduck.net +### PIPER / BYTEMARK -### ARNOLD / GPLHOST +Host piper.madduck.net | piper + Hostname piper.madduck.net -Host arnold-host | arnold-host.madduck.net - Hostname arnold-host.madduck.net - User xen05 +### CIRRUS / HETZNER -### GERN +Host cirrus.madduck.net | cirrus + Hostname cirrus.madduck.net + +### LEHEL -Host wall.gern.madduck.net | wall +Host clegg.lehel.madduck.net | clegg.lehel | clegg CheckHostIP no - ForwardAgent yes + Hostname clegg.lehel.madduck.net + +Host albatross.lehel.madduck.net | albatross.lehel | albatross + Hostname albatross.lehel.madduck.net + HostKeyAlias albatross.lehel + LocalForward localhost:8387 localhost:8384 + DynamicForward localhost:9049 +Host albatross-luks + Hostname albatross.lehel.madduck.net + AddressFamily inet + User root + +Host albatross-via-clegg | ralbatross + Hostname albatross.lehel.madduck.net + ProxyJump clegg.dyndns.madduck.net + AddressFamily inet + LocalForward localhost:8387 localhost:8384 + DynamicForward localhost:9049 + +Host bike.lehel.madduck.net | bike.lehel | bike | clegg-kvm + Hostname bike.lehel.vpn.madduck.net + HostKeyAlias bike.lehel + +Host visitor*.lehel.madduck.net | visitor*.lehel + StrictHostKeyChecking no + UserKnownHostsFile /dev/null + +### GERN + +Host wall.gern.madduck.net | wall.gern | wall Hostname wall.gern.madduck.net + HostKeyAlias wall.gern.madduck.net -Host julia.gern.madduck.net | julia +Host julia.gern.madduck.net | julia.gern | julia Hostname julia.gern.madduck.net - ForwardAgent yes -Host juliae - Hostname wall.gern.madduck.net - Port 22002 - CheckHostIP no - ForwardAgent yes - ForwardX11 yes HostKeyAlias julia.gern.madduck.net + LocalForward localhost:8388 localhost:8384 +Host julia-luks + Hostname julia.gern.madduck.net + AddressFamily inet + User root -Host fishbowl.gern.madduck.net | fishbowl.gern - ForwardAgent yes - ForwardX11 yes - HostKeyAlias fishbowl.gern - -Host galaxy-s2.phones.gern | galaxy-s2 - Hostname galaxy-s2.phones.gern - HostKeyAlias galaxy-s2.phones.gern +Host kodi.gern.madduck.net | kodi + Hostname kodi.gern.madduck.net User root -Host pict.gern.madduck.net | pict - Hostname pict.gern.madduck.net - ForwardAgent yes - ForwardX11 yes +Host echo.kids.gern | echo.kids | jukebox.kids.gern | jukebox.kids + Hostname echo.kids.gern.madduck.net + HostKeyAlias echo.kids.gern.madduck.net -Host visitor*.gern.madduck.net | visitor*.gern | visitor* +Host visitor*.gern.madduck.net | visitor*.gern StrictHostKeyChecking no UserKnownHostsFile /dev/null -### LEHEL +### ROAD WARRIORS -Host clegg.lehel.madduck.net | clegg +Host lotus.* CheckHostIP no - ForwardAgent yes - Hostname clegg.lehel.madduck.net + HostKeyAlias lotus + LocalForward localhost:8385 localhost:8384 -Host albatross.lehel.madduck.net | albatross.lehel | albatross - Hostname albatross.lehel.madduck.net - ForwardAgent yes - ForwardX11 yes - HostKeyAlias albatross.lehel -Host albatrosse - Hostname wall.lehel.madduck.net - Port 22032 +Host lotus | lotus.rw.madduck.net CheckHostIP no - ForwardAgent yes - ForwardX11 yes - HostKeyAlias albatross.lehel - -Host fishbowl.lehel.madduck.net | fishbowl.lehel - ForwardAgent yes - ForwardX11 yes - HostKeyAlias fishbowl.lehel - -### GAUTING - -Host embryo.gauting.madduck.net | embryo + HostKeyAlias lotus + ConnectTimeout 120 + ProxyCommand ssh wall.gern.madduck.net "wakeonlan -i 192.168.39.255 dc:fb:48:35:03:04 && sleep 10 && exec nc -w 30 %h %p" + #ProxyCommand bash -c "TARGETS=$( (TRIES=%h.{gern,lehel,rw}.madduck.net; eval fping -aAC1 -t500 $TRIES 2>&1 & eval fping6 -aAC1 -t500 $TRIES 2>&1; wait) | sed -rne 's, : ([[:digit:]]), @\1,p' | sort -t@ -k2n | sed -ne 's, .*,,p' | tr '\n' ','); echo Targets: \$TARGETS using \${TARGETS%%%%,*} … >&2; exec nc -F -vq0 \${TARGETS%%%%,*} %p" + #ProxyUseFdpass yes + LocalForward localhost:8385 localhost:8384 + +Host ini | ini.dyndns.madduck.net CheckHostIP no - ForwardAgent yes - Hostname embryo.gauting.madduck.net - HostKeyAlias embryo.gauting.madduck.net + HostKeyAlias ini.dyndns.madduck.net + HostName ini.dyndns.madduck.net + Port 13579 + User christine -Host mother.gauting | mother | mother.gauting.madduck.net - Hostname mother.gauting - ForwardAgent yes - ForwardX11 yes -Host mothere - Hostname embryo.gauting.madduck.net - Port 22221 +Host emerald | emerald.kids.gern | emerald.rw.madduck.net CheckHostIP no - ForwardAgent yes - ForwardX11 yes - HostKeyAlias mother.gauting.madduck.net + HostKeyAlias emerald + HostName emerald.kids.gern + LocalForward localhost:5932 localhost:5900 -Host brick.gauting.madduck.net | brick - Hostname brick.gauting.madduck.net - ForwardAgent yes - ForwardX11 yes -Host bricke - Hostname embryo.gauting.madduck.net - Port 22222 +Host lelina | lelina.kids.gern | lelina.rw.madduck.net CheckHostIP no - ForwardAgent yes - ForwardX11 yes - HostKeyAlias brick.gauting.madduck.net - -### ROAD WARRIORS + HostKeyAlias lelina + HostName lelina.kids.gern + LocalForward localhost:5931 localhost:5900 -Host fishbowl +Host mother + HostKeyAlias mother + Hostname mother.rw.vpn.madduck.net CheckHostIP no - ForwardAgent yes - ForwardX11 yes -### DEBIAN +### TILDE CLUB -Host svn.debian.org - HostKeyAlias vasks.debian.org - User madduck -Host git.debian.org - HostKeyAlias vasks.debian.org - User madduck -Host hg.debian.org - HostKeyAlias vasks.debian.org - User madduck -Host cvs.debian.org - HostKeyAlias vasks.debian.org +Host squiggle.city + Hostname squiggle.city User madduck -Host people.debian.org - HostKeyAlias ravel.debian.org +Host tilde.club + Hostname tilde.club User madduck -Host abel.debian.org | abel - Hostname abel.debian.org - User madduck -Host agricola.debian.org | agricola - Hostname agricola.debian.org - User madduck -Host albeniz.debian.org | albeniz - Hostname albeniz.debian.org - User madduck -Host asdfasdf.debian.net | asdfasdf - Hostname asdfasdf.debian.net - User madduck -Host busoni.debian.org | busoni - Hostname busoni.debian.org - User madduck -Host cilea.debian.org | cilea - Hostname cilea.debian.org - User madduck -Host duarte.debian.org | duarte - Hostname duarte.debian.org - User madduck -Host dukas.debian.org | dukas - Hostname dukas.debian.org - User madduck -Host glinka.debian.org | glinka - Hostname glinka.debian.org - User madduck -Host grieg.debian.org | grieg - Hostname grieg.debian.org - User madduck -Host io.debian.net | io - Hostname io.debian.net - User madduck -Host lindberg.debian.org | lindberg - Hostname lindberg.debian.org - User madduck -Host master.debian.org | master - Hostname master.debian.org - User madduck -Host merulo.debian.org | merulo - Hostname merulo.debian.org - User madduck -Host nono.debian.org | nono - Hostname nono.debian.org - User madduck -Host paer.debian.org | paer - Hostname paer.debian.org - User madduck -Host paganini.debian.org | paganini - Hostname paganini.debian.org - User madduck -Host pergolesi.debian.org | pergolesi - Hostname pergolesi.debian.org - User madduck -Host pescetti.debian.org | pescetti - Hostname pescetti.debian.org - User madduck -Host piatti.debian.org | piatti - Hostname piatti.debian.org - User madduck -Host powell.debian.org | powell - Hostname powell.debian.org - User madduck -Host quantz.debian.org | quantz - Hostname quantz.debian.org - User madduck -Host ravel.debian.org | ravel - Hostname ravel.debian.org - User madduck -Host respighi.debian.org | respighi - Hostname respighi.debian.org - User madduck -Host ries.debian.org | ries - Hostname ries.debian.org - User madduck -Host rore.debian.org | rore - Hostname rore.debian.org - User madduck -Host samosa.debian.org | samosa - Hostname samosa.debian.org - User madduck -Host senfl.debian.org | senfl - Hostname senfl.debian.org - User madduck -Host sh4.g15.jp | sh4 - Hostname sh4.g15.jp - User madduck -Host smetana.debian.org | smetana - Hostname smetana.debian.org - User madduck -Host sperger.debian.org | sperger - Hostname sperger.debian.org - User madduck -Host stabile.debian.org | stabile - Hostname stabile.debian.org - User madduck -Host strauss.debian.net | strauss - Hostname strauss.debian.net - User madduck -Host sumotsu.debian.net | sumotsu - Hostname sumotsu.debian.net - User madduck -Host tye.debian.org | tye - Hostname tye.debian.org - User madduck -Host vasks.debian.org | vasks - Hostname vasks.debian.org - User madduck -Host vivaldi.debian.org | vivaldi - Hostname vivaldi.debian.org - User madduck -Host wagner.debian.org | wagner - Hostname wagner.debian.org - User madduck -Host widor.debian.org | widor - Hostname widor.debian.org - User madduck -Host zelenka.debian.org | zelenka - Hostname zelenka.debian.org - User madduck - -### NZ +### MISC -Host workbuffer.org | nz - Hostname workbuffer.org +Host nz + Hostname 202.78.240.196 User madduck -### MISC - Host github.com | github Hostname github.com User git +Host gitlab.com | gitlab + Hostname gitlab.com + User git + +Host gitlab.debian.net | git.fosscommunity.in + Hostname gitlab.debian.net + User gitlab + +Host lion.mjollnir.org | lion + Hostname lion.mjollnir.org + User madduck + +Host files.northdrive.de | idiotheke | seamus.northdrive.de + Hostname seamus.northdrive.de + Port 37819 + HostKeyAlias seamus.northdrive.de + User madduck + +Host clegg.northdrive.de + Port 37819 + User madduck + ### DEFAULTS +Match host *.madduck.net + StrictHostKeyChecking ask + +Match host *.debian.org + StrictHostKeyChecking ask + User madduck + Host * -# AddressFamily any -# BatchMode no -# CheckHostIP yes - Cipher blowfish -# Ciphers aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr -# ClearAllForwardings no -# Compression no -# CompressionLevel 6 -# ConnectionAttempts 1 - ConnectTimeout 10 + IgnoreUnknown * + ConnectTimeout 30 ControlPath ~/.var/ssh/ssh_control_%l_%h_%p_%r ControlMaster auto - ControlPersist 5 -## DSAAuthentication no -# DynamicForward off -# EnableSSHKeysign no -# EscapeChar ~ - ExitOnForwardFailure yes + ControlPersist 30 + ExitOnForwardFailure no ForwardAgent no - ForwardX11 no -# ForwardX11Trusted yes -# GatewayPorts no -# GlobalKnownHostsFile /etc/ssh/ssh_known_hosts HashKnownHosts no -# HostbasedAuthentication no - HostKeyAlgorithms ssh-rsa -# IdentityFile ~/.ssh/identity - IdentityFile2 ~/.ssh/id_rsa - IPQoS lowdelay throughput -# KbdInteractiveDevices pam -# LocalCommand none -# LocalForward none -# LogLevel INFO - MACs hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-sha1-96,hmac-md5,hmac-md5-96 -# NoHostAuthenticationForLocalhost no NumberOfPasswordPrompts 2 PasswordAuthentication yes -# PermitLocalCommand no -# Port 22 -# PreferredAuthentications gssapi-with-mic,hostbased,publickey,keyboard-interactive,password - Protocol 2 -# ProxyCommand -# PubkeyAuthentication yes -# RekeyLimit 1G-4G #depends on cipher -# RemoteForward -# RhostsRSAAuthentication no -# RSAAuthentication no -# ServerAliveCountMax 3 ServerAliveInterval 45 - SetupTimeOut 10 -# SmartcardDevice off StrictHostKeyChecking yes -# TCPKeepAlive yes -# Tunnel no -# TunnelDevice any:any -# UsePrivilegedPort no -# UserKnownHostsFile ~/.ssh/known_hosts -# VerifyHostKeyDNS no + VerifyHostKeyDNS ask VisualHostKey no -# XAuthLocation /usr/X11R6/bin/xauth