java - How to SSH to a server behind another SSH server using JSch? -

-

i need able ssh java program remote server, , there ssh server. have credentials both servers on client.

the commands passed automatically within app regular strings (no user input). need able run custom commands on second server , able decide commands issue during runtime, based on output , simple logic.

can use jsch , if yes, should start into? (examples, info)

=============================================================

added:

exception in thread "main" com.jcraft.jsch.jschexception: unknownhostkey: host.net. rsa key fingerprint 'blahblahblah'

as till now, solving problem modifying known_hosts file , adding host manually in there. can bypass little problem settings option somewhere telling jsch press yes automatically when yes-no question asked?

to connect second server behind firewall, there in principle 2 options.

the naive 1 call ssh on first server (from exec channel), indicating right server. need agent forwarding jsch, , doesn't provide jsch api access second server, ssh command line.

the better 1 use connection first server build tcp tunnel, , use tunnel connect second server. jsch wiki contains proxyssh class (together example code) allows use jsch session tunnel second jsch session. (disclaimer: class written me, support jsch author.)

when have connection second server, use either shell channel or series of exec channels execute commands. (see shell, exec or subsystem channel in jsch wiki overview, , javadocs details.)

for unknown-host-key problem:

the secure version collect host keys (in secure way) before , put them in known_hosts file. (if trust key presented you, vulnerable man-in-the-middle attack. if these of no concern in network, since physically secured, you.)

the convenient version setting configuration option stricthostkeychecking no - add unknown host keys host keys file:

jsch.setconfig("stricthostkeychecking", "no");

(you can set individually on sessions, if want set proxied sessions , not tunnel session. or override tunnel session yesor ask - there mitm danger might greater.)

a middle way enable asking user (which should compare fingerprints list) - this, implement userinfo interface , provide object session. (the jsch wiki contains example implementation using swing joptionpanes, can use if client program runs on system gui.)

for saving of accepted host keys work, must use jsch.setknownhosts method file name argument, not 1 inputstream argument - else accepting have repeated each restart of client.


Comments

Post a Comment

Popular posts from this blog

linux - Using a Cron Job to check if my mod_wsgi / apache server is running and restart -

-
my group , running server based upon django , uses mod_wsgi run apache server. not working on project after over, attempting set cronjob similar functionality check if apache server has shut down(system restart or power failure), , if has, restart server me. i've found documentation on how check if apache server down , restart server if is, our server uses https , our start command pretty verbose. can use functionality provided in these examples: https://askubuntu.com/questions/277389/cron-job-to-restart-apache https://www.digitalocean.com/community/tutorials/how-to-use-a-simple-bash-script-to-restart-server-programs or need more complicated process make happen? the command use start server is python manage.py runmodwsgi --host 0.0.0.0 --port 8001 --https-port 8000 --ssl-certificate (certificate location) --server-name (domain name) i'm pretty new linux , using both mod-wsgi apache appreciated. you better off using --setup-only option mod_wsgi-expres
Read more

actionscript 3 - TweenLite does not work with object -

-
i got following problem: i have object called tempscore game. this object blitted canvas renderer via copypixels method. object not display object. it's score-object (self made). score-object extends object called basicblitarrayobject. basicblitarrayobject extends eventdispatcher (therefore no display object). i tried apply several different tweenlite-plugins tempscore-object (i.e. transformaroundcenter, colormatrixfilter, etc.). nothing happens. absolutely nothing. sometimes error messages (when plugin requires display object , object not display object). far good. according greensock (maker of tweenlite) engine can tween numeric property of object. when plugin transformaroundcenter requires display object tweening have modify plugin working non-display object (tempscore). can't because it's way hard me. my game rests upon code: http://www.8bitrocket.com/book/ch11_blastermines.zip try apply tweenlite object called tempmine inside game class blastermines.
Read more

jQuery Ajax Render Fragments OR Whole Page -

-
i'm in throes of building application wraps mess of legacy code. page working on, need substitute fragment divs constructed on back-end -- or else need replace entire page altogether. idea there dynamically controlled flow needs satisfied before can forward legacy product. substituting fragments works fine, seen in below my_body_content swap. trouble comes when i'm trying render not fragment, whole page, in "body" swap. @ point page goes blank. i want similar errors returned server. want nice rest 404 error messages displayed on screen, legacy-product 404s show in legacy-product 404 page. yes, requirements project weird. that's not problem can fix. here's jquery invocation, names changed protect guilty: $.ajax({ url: "places/things", type: "post", data: json.stringify(somebadassobject), datatype: "text", accepts: "text/html", contenttype: "application/json; charset=
Read more