XS Configuration Management: Difference between revisions

From OLPC
Jump to navigation Jump to search
(New page: This page describes how the software packages comprising an XS School server are configured. <i>This page is sadly unfinished.</i> =Server Configuration= Configur...)
 
Line 13: Line 13:
=User Accounts=
=User Accounts=


When a school server is installed, it has no user accounts, remote (SSH) login to the root account is disabled, and remote logins must be authenticated using a public/private key pair. If exploring or developing with a school server, you will need to add a new account (as root, from the console):
When a school server is installed, it has no user accounts, remote (SSH) login to the root account is disabled, and remote logins must be authenticated using a public/private key pair. If exploring or developing with a school server, as root from the console you will need to add a new account (username wad in the example):


adduser kim
adduser wad
passwd kim
passwd wad
wget http://dev.laptop.org/~kim/public_key
wget http://dev.laptop.org/~wad/dsa_public_key
mkdir /home/kim/.ssh
mkdir /home/wad/.ssh
mv public_key /home/kim/.ssh/authorized_keys
mv dsa_public_key /home/wad/.ssh/authorized_keys
chown -R kim:kim /home/kim/.ssh
chown -R wad:wad /home/wad/.ssh


The public key, downloaded from <tt>http://dev.laptop.org/~kim/public_key</tt> in the above example, can be generated on any Linux system using the <tt>ssh-keygen</tt> command (which leaves your new public/private key pair in <tt>.ssh</tt>). You want to copy the id_rsa.pub onto the server to allow logins
The public key, downloaded from <tt>http://dev.laptop.org/~wad/dsa_public_key</tt> in the above example, can be generated on any Linux system using the <tt>ssh-keygen</tt> command (which leaves your new public/private key pair in <tt>.ssh</tt>). You want to copy the <tt>id_rsa.pub</tt> or <tt>id_dsa.pub</tt> file to other machines to allow logins.

Revision as of 03:11, 5 September 2007

This page describes how the software packages comprising an XS School server are configured.

This page is sadly unfinished.

Server Configuration

Configuration of packages

School Specific Configuration

The school specific configuration is largely done by a script, network_config.py, run at first boot.

User Accounts

When a school server is installed, it has no user accounts, remote (SSH) login to the root account is disabled, and remote logins must be authenticated using a public/private key pair. If exploring or developing with a school server, as root from the console you will need to add a new account (username wad in the example): 

adduser wad
passwd wad
wget http://dev.laptop.org/~wad/dsa_public_key
mkdir /home/wad/.ssh
mv dsa_public_key /home/wad/.ssh/authorized_keys
chown -R wad:wad /home/wad/.ssh

The public key, downloaded from http://dev.laptop.org/~wad/dsa_public_key in the above example, can be generated on any Linux system using the ssh-keygen command (which leaves your new public/private key pair in .ssh). You want to copy the id_rsa.pub or id_dsa.pub file to other machines to allow logins.

Retrieved from "http://wiki.laptop.org/mediawiki/index.php?title=XS_Configuration_Management&oldid=63483"