Permalink
Browse files

Remote instructions are written as root, add chown.

  • Loading branch information...
1 parent 5f84cd9 commit 5c702481ab2c75f6563ef5f91ac790f0006560e7 @aphyr committed Dec 24, 2010
Showing with 9 additions and 8 deletions.
  1. +9 −8 README
View
17 README
@@ -17,19 +17,20 @@ setup script for you, which should work on Ubuntu.
local$ sudo bin/setup
Create a user on the remote host
- remote$ adduser --disabled-password --shell /bin/false tunnel
- remote$ cd ~tunnel
- remote$ rm -rf .bash* .profile
+ remote# adduser --disabled-password --shell /bin/false tunnel
+ remote# cd ~tunnel
+ remote# rm .bash* .profile
On the tunneling host, create .ssh/authorized_keys
- remote$ mkdir .ssh
- remote$ $VISUAL .ssh/authorized_keys
+ remote# mkdir .ssh
+ remote# $VISUAL .ssh/authorized_keys
and paste the public key into that file.
-Seal the user's homedir
- remote$ chmod 400 .ssh/authorized_keys
- remote$ chmod 500 . .ssh
+Lock down the user's homedir
+ remote# chown -R tunnel:tunnel ~tunnel
+ remote# chmod 400 .ssh/authorized_keys
+ remote# chmod 500 . .ssh
Confirm that you can establish a tunnel:
local$ ssh -vgN -i etc/key -R 2222:localhost:22 tunnel@remote.com

0 comments on commit 5c70248

Please sign in to comment.