From a9ae9b6904fdf5cd9a158574aca166fa9296de8b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nikolas=20F=C3=B6rster?= Date: Thu, 29 Sep 2022 07:29:41 +0200 Subject: [PATCH 1/6] Hint to new userconfig file for ssh servers in headless setups. --- .../asciidoc/computers/remote-access/secure-shell.adoc | 2 ++ 1 file changed, 2 insertions(+) diff --git a/documentation/asciidoc/computers/remote-access/secure-shell.adoc b/documentation/asciidoc/computers/remote-access/secure-shell.adoc index fd17631a5..05bef85d3 100644 --- a/documentation/asciidoc/computers/remote-access/secure-shell.adoc +++ b/documentation/asciidoc/computers/remote-access/secure-shell.adoc @@ -31,4 +31,6 @@ Alternatively you can enable it from the terminal using the xref:configuration.a NOTE: For headless setup, SSH can be enabled by placing a file named `ssh`, without any extension, onto the boot partition of the SD Card. When the Raspberry Pi boots, it looks for the `ssh` file. If it is found, SSH is enabled and the file is deleted. The content of the file does not matter; it could contain text, or nothing at all. +NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. This security feature was introduced in april 20222. Please refer to xref:headless.adoc#configuring-a-user[Configuring a User]. + WARNING: When enabling SSH on a Raspberry Pi that may be connected to the internet, you should ensure that your password is not easily brute forced. From fca00b427b9ee9c03ddf7d6f433e23e4257ae18b Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nikolas=20F=C3=B6rster?= Date: Thu, 29 Sep 2022 11:34:03 +0200 Subject: [PATCH 2/6] rm specific date in documentation due to irrelevant information --- .../asciidoc/computers/remote-access/secure-shell.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/documentation/asciidoc/computers/remote-access/secure-shell.adoc b/documentation/asciidoc/computers/remote-access/secure-shell.adoc index 05bef85d3..e678759d8 100644 --- a/documentation/asciidoc/computers/remote-access/secure-shell.adoc +++ b/documentation/asciidoc/computers/remote-access/secure-shell.adoc @@ -31,6 +31,6 @@ Alternatively you can enable it from the terminal using the xref:configuration.a NOTE: For headless setup, SSH can be enabled by placing a file named `ssh`, without any extension, onto the boot partition of the SD Card. When the Raspberry Pi boots, it looks for the `ssh` file. If it is found, SSH is enabled and the file is deleted. The content of the file does not matter; it could contain text, or nothing at all. -NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. This security feature was introduced in april 20222. Please refer to xref:headless.adoc#configuring-a-user[Configuring a User]. +NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to xref:headless.adoc#configuring-a-user[Configuring a User]. WARNING: When enabling SSH on a Raspberry Pi that may be connected to the internet, you should ensure that your password is not easily brute forced. From 44a8bb36a510a29398ae99b092722c31886380ed Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nikolas=20F=C3=B6rster?= Date: Thu, 29 Sep 2022 12:20:05 +0200 Subject: [PATCH 3/6] fix internal linking --- documentation/asciidoc/computers/configuration/headless.adoc | 1 + .../asciidoc/computers/remote-access/secure-shell.adoc | 4 ++-- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/documentation/asciidoc/computers/configuration/headless.adoc b/documentation/asciidoc/computers/configuration/headless.adoc index 44a6572a5..9c584a25f 100644 --- a/documentation/asciidoc/computers/configuration/headless.adoc +++ b/documentation/asciidoc/computers/configuration/headless.adoc @@ -57,6 +57,7 @@ NOTE: Some older Raspberry Pi boards and some USB wireless dongles do not suppor NOTE: With no keyboard or monitor, you will need some way of xref:remote-access.adoc[remotely accessing] your headless Raspberry Pi. For headless setup, SSH can be enabled by placing a file named `ssh`, without any extension, onto the boot folder of the SD Card. For more information see the section on xref:remote-access.adoc#ssh[setting up an SSH server]. +[[configuring-a-user]] === Configuring a User You will need to add a `userconf.txt` in the boot partition of the SD card; this is the part of the SD card which can be seen when it is mounted in a Windows or MacOS computer. diff --git a/documentation/asciidoc/computers/remote-access/secure-shell.adoc b/documentation/asciidoc/computers/remote-access/secure-shell.adoc index e678759d8..4dce58f90 100644 --- a/documentation/asciidoc/computers/remote-access/secure-shell.adoc +++ b/documentation/asciidoc/computers/remote-access/secure-shell.adoc @@ -20,7 +20,7 @@ Raspberry Pi OS has the SSH server disabled by default. It can be enabled manual . Select `Enabled` next to `SSH` . Click `OK` -Alternatively you can enable it from the terminal using the xref:configuration.adoc#raspi-config[raspi-config] application, +Alternatively you can enable it from the terminal using the xref:configuration.adoc#configuring-a-user[Configuring a User] application, . Enter `sudo raspi-config` in a terminal window . Select `Interfacing Options` @@ -31,6 +31,6 @@ Alternatively you can enable it from the terminal using the xref:configuration.a NOTE: For headless setup, SSH can be enabled by placing a file named `ssh`, without any extension, onto the boot partition of the SD Card. When the Raspberry Pi boots, it looks for the `ssh` file. If it is found, SSH is enabled and the file is deleted. The content of the file does not matter; it could contain text, or nothing at all. -NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to xref:headless.adoc#configuring-a-user[Configuring a User]. +NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to xref:configuration.adoc#headless[Setting up a Headless Raspberry Pi]. WARNING: When enabling SSH on a Raspberry Pi that may be connected to the internet, you should ensure that your password is not easily brute forced. From 79a285dc7cecb2f74b2d5f960309c1285ce10ea8 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nikolas=20F=C3=B6rster?= Date: Thu, 6 Oct 2022 10:10:59 +0200 Subject: [PATCH 4/6] restore overwriting link to raspberry-config --- .../asciidoc/computers/remote-access/secure-shell.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/documentation/asciidoc/computers/remote-access/secure-shell.adoc b/documentation/asciidoc/computers/remote-access/secure-shell.adoc index 4dce58f90..869a0a544 100644 --- a/documentation/asciidoc/computers/remote-access/secure-shell.adoc +++ b/documentation/asciidoc/computers/remote-access/secure-shell.adoc @@ -20,7 +20,7 @@ Raspberry Pi OS has the SSH server disabled by default. It can be enabled manual . Select `Enabled` next to `SSH` . Click `OK` -Alternatively you can enable it from the terminal using the xref:configuration.adoc#configuring-a-user[Configuring a User] application, +Alternatively you can enable it from the terminal using the xref:configuration.adoc#raspi-config[raspi-config] application, . Enter `sudo raspi-config` in a terminal window . Select `Interfacing Options` From 2ec92ac9e0ba20ec0b8be2a7e45d61133bd1d9fe Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nikolas=20F=C3=B6rster?= Date: Thu, 6 Oct 2022 10:56:00 +0200 Subject: [PATCH 5/6] fix internal linking again --- .../asciidoc/computers/remote-access/secure-shell.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/documentation/asciidoc/computers/remote-access/secure-shell.adoc b/documentation/asciidoc/computers/remote-access/secure-shell.adoc index 869a0a544..e81adf036 100644 --- a/documentation/asciidoc/computers/remote-access/secure-shell.adoc +++ b/documentation/asciidoc/computers/remote-access/secure-shell.adoc @@ -31,6 +31,6 @@ Alternatively you can enable it from the terminal using the xref:configuration.a NOTE: For headless setup, SSH can be enabled by placing a file named `ssh`, without any extension, onto the boot partition of the SD Card. When the Raspberry Pi boots, it looks for the `ssh` file. If it is found, SSH is enabled and the file is deleted. The content of the file does not matter; it could contain text, or nothing at all. -NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to xref:configuration.adoc#headless[Setting up a Headless Raspberry Pi]. +NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to xref:configuration.adoc#configuring-a-user[Configuring a User]. WARNING: When enabling SSH on a Raspberry Pi that may be connected to the internet, you should ensure that your password is not easily brute forced. From 361e49a5db8537c25eede97ac90d7dc780790aaf Mon Sep 17 00:00:00 2001 From: Alasdair Allan Date: Thu, 6 Oct 2022 10:04:18 +0100 Subject: [PATCH 6/6] Update secure-shell.adoc --- .../asciidoc/computers/remote-access/secure-shell.adoc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/documentation/asciidoc/computers/remote-access/secure-shell.adoc b/documentation/asciidoc/computers/remote-access/secure-shell.adoc index e81adf036..d84c8217f 100644 --- a/documentation/asciidoc/computers/remote-access/secure-shell.adoc +++ b/documentation/asciidoc/computers/remote-access/secure-shell.adoc @@ -31,6 +31,6 @@ Alternatively you can enable it from the terminal using the xref:configuration.a NOTE: For headless setup, SSH can be enabled by placing a file named `ssh`, without any extension, onto the boot partition of the SD Card. When the Raspberry Pi boots, it looks for the `ssh` file. If it is found, SSH is enabled and the file is deleted. The content of the file does not matter; it could contain text, or nothing at all. -NOTE: For headless setup, additional to the `ssh`-file, you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to xref:configuration.adoc#configuring-a-user[Configuring a User]. +NOTE: For headless setup in addition to the `ssh`-file you need a `userconfig`-file, which contains a string `username:encryptedpassword`. Please refer to the section on xref:configuration.adoc#configuring-a-user[configuring a user] in the discussions around headless setup of a Raspberry Pi. WARNING: When enabling SSH on a Raspberry Pi that may be connected to the internet, you should ensure that your password is not easily brute forced.