rocky January 2023

rocky@lists.resf.org

3 participants
2 discussions

Rocky Linux 9, sshd, chrooted users with public key authentication, VS Code integration for web development
by David Mehler 07 Jan '23

07 Jan '23

Hello, I've got a vps running Rocky Linux 9. It's got an Nginx web server with several sites that I'd like to allow users to manage. They use VS Code. Currently and this is not working entirely to my satisfaction I've got these users set up as sftp-only, while they do have accounts n the system they are all set with a nologin shell. In sshd_config the internal sftp server is used. If I atempt login from a second system using one of these user's username/password combos that works, and I can see there writable webstore area nd only that area, so the chroot is somewhat working. I am more uncertain about permissions and owner/group access for nginx and sshd, I don't want to give these users' files to much permissions. I would like to turn off PasswordAuthentication entirely and only use PublickeyAuthentication. On the second system I've generated keypairs for a user and put them on the server in home directory .ssh and manually set permissions. These keys do not have a passphrase so my expected outcome is to atempt an sftp login and the connection goes right in without password. This doesn't happen, I keep getting a message that PublickeyAuthentication not allowed, even though that option is set in sshd_config and again in each user-specific block. Lastly, once I get PublickeyAuthentication going and have disabled PasswordAuthentication I'm going to want to hook VS Code in to this. Currently I've got the remote ssh extension installed, but from what I'm reading this only does ssh not sftp. Does anyone have something similar to this setup going? If so any help appreciated. Thanks. Dave.

1 0

gnome-term and xterm problem on 9.1 with VNC
by Lana Deere 06 Jan '23

06 Jan '23

I have a machine running Rocky 9.1. I have configured VNC as a service as described in the documentation. I connect to the VNC server using a VNC viewer from CentOS7.9. I open a number of gnome terminals to use for software development. When I do certain things, the terminals get messed up and fail to display the text correctly. Particularly using left-arrow to edit a previous command in bash seems to trigger this, but that may not be the only way to hit it. An example of how the text is messed up is that the first time I hit left-arrow nothing appears to happen. Subsequently the cursor position moves one to the left with each left-arrow. But if I type a character and hit enter, it is inserted one character to the left of where the cursor indicated. Once the window is in this state, other things work incorrectly too. For example, running "ls" will print the file listing but the window will not finish scrolling to the last line and the following prompt will not display. Hitting an extra "enter" will cause the window to finish scolling and the missing prompt to display along with the extra prompt from the "enter". Has anyone else seen this? Anyone have any suggestions on how to diagnose or fix this? I described the above with respect to gnome-terminal but xterm if anything is worse. .. Lana (lana.deere(a)gmail.com)

2 2

2025

2024

2023

2022

2021

rocky January 2023