System Administration: March 2008 Archives

Keep Tunnelling - 不灭的隧道

By jianingy on March 9, 2008 9:02 PM | | Comments (0) | TrackBacks (0)

我们用daemontools来控制ssh tunnel确保tunnel能在意外断开后主动连接上。在daemon中做tunnel最大的问题就是如何输入密码。这个问题可以使用以前的 ssh-attach 脚本来解决。

首先创建一个连接脚本(tunnel.sh):

#!/bin/sh
HOME=/home/jianingy
eval `$HOME/bin/ssh-attach`
ssh -p 23456 -b 0.0.0.0 -R 12345:localhost:143 xxx.xxx.xxx.xxx "vmstat 60"

再建立daemontools的run脚本:

#!/bin/sh

exec setuidgid jianingy ./tunnel.sh

用加载ssh-agent的用户(这里是jianingy)来执行tunnel.sh(即用setuidgid jianingy在指定),酱紫tunnel.sh中调用的ssh-attach便能复用已有的ssh-agent了,保证tunnel连接无须输入密码.

« System Administration: January 2008 | Main Index | Archives | System Administration: April 2008 »

Search


October 2008

Sun Mon Tue Wed Thu Fri Sat
      1 2 3 4
5 6 7 8 9 10 11
12 13 14 15 16 17 18
19 20 21 22 23 24 25
26 27 28 29 30 31  

Friends

  • Xell Zhang

    • Recent Posts

    Recent Comments

    mmx on 杀掉由NFS造成Uninterruptible的进程: thank u ve
    FW on 【转】rxvt-unicode (urxvt) 字间距过宽的patch: pls contac
    jianingy on 用正则表达式Look-Ahead做带逃逸的变量替换: 这个lc是啥意思?
    cnhackTNT on 用正则表达式Look-Ahead做带逃逸的变量替换: 晕,被过滤掉了,再试
    cnhackTNT on 用正则表达式Look-Ahead做带逃逸的变量替换: s/(? 这样可以
    R.Q. on 个性化SSH登录: 酱紫哦,了了 ---

    Tag Cloud

    Categories

    Subscribe to this blog's feed
    [What is this?]

    Archives

    Powered by Movable Type