[TriLUG] Re: SSH & public key authorization on sourceforge (Tom Bryan)

acoliver acoliver at nc.rr.com
Fri Sep 7 08:24:48 EDT 2001


On Friday 07 September 2001 02:24 am, you wrote:
> Thanks Tom,  You hit it on the nail.  

>No problem.  Earlier this year, I helped three or four people on a local 
>project (www.ecoaccess.org) get their SourceForge connections up and
>working. 
>The SSH1 vs. SSH2 thing was a pretty common problem.

apparently...whats really annoying is

> Unfortunately because my goal is to integrate
> the latest copy of netbeans (which is awesome by the way) with
> sourceforge, 

>What do you mean by that?

I got netbeans to work on both Windoze (not my choice) and linux.  The linux
box was a snap once I figured out this goofy ssh thing.  THe windows box
required me to jump hoops and edit bat files and not launch from cygwin.

> I had to change Protocols 2,1 in /etc/ssh_config to
> Protocols 1.  I tried 1,2 but it didn't work...

>Heh.  I just created a one-line shell script that does 
>exec ssh -1 -C @

That didn't work for me for some reason 

> Unfortunately Sourceforge's cvs servers don't allow you to setup DSA
> encryption.

>I'm not up on security and everything that ssh offers, but I hope you don't

>mean that they don't permit key-based authentication.  That's certainly not

>true.  

No, there is the old RSA encryption which SSH1 supports.  There is the new
DSA which SSH2 supports.  You can only use the former and not the latter. 
I've got the public key working thanks to you, its just SSH1 and RSA not
SSH2 and DSA.  Then again its not like I'm scared someone will hack
sourceforge and destroy my project because I've always got a local copy of
everything anyhow, so in truth the extra security is more of a geewhiz
thing, not sure I'd spend the time to do it.  (The public key was a
necessity to get netbeans working with cvs). 

> I did use the web interface.  It does (for anyone concerned) take up to
> 12 hours to propegate!

>It's tough when you're eager to start doing something, but all serious 
>SourceForge users have been hit by cron delays.  Heck, I even got bit by a 
>delay among machines that were apparently mirrored to provide load
>balancing.

Its understandable I suppose.  It would be nice if they could (insert your
favorite brand of NFS-like thing here)-mount your .ssh directory across to
the CVS servers.  All in all I love the sourceforge tool.  I may download it
for my private projects.  (poi is mostly for fun though I can see myself
being my own most devout user for future projects)

Thanks Again,

-Andy






More information about the TriLUG mailing list