NEW: https://github.com/neolao/documentation/blob/master/ssh.md
ssh -L 10000:127.0.0.1:10000 -N login@serveur
ssh -L 7000:10.16.11.1:6379 -N login@serveur
Le premier port est celui en local, le second est le vrai.
ssh-keygen -t rsa
ssh-copy-id -i ~/.ssh/id_rsa.pub <username>@<ipaddress>
ssh-keygen -t ecdsa
ssh-copy-id -i ~/.ssh/id_rsa.pub "<username>@<ipaddress> -p 1234"
no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty,command="/home/remote/.ssh/restrict.sh" ssh-rsa AAAAB...I2hA== neolao@neolao.local
command="./restrict-git.sh",no-port-forwarding,no-agent-forwarding,no-X11-forwarding,no-pty ssh-dss AAAAB…
logFile=/path/to/log
echo "$SSH_ORIGINAL_COMMAND" >> $logFile case "$SSH_ORIGINAL_COMMAND" in
# Synchronisation d'un dossier de www online vers le local rsync\ --server\ --sender\ -vtre.iL\ .\ /home/remote/www/*) echo " ... OK" >> $logFile $SSH_ORIGINAL_COMMAND ;;
# Synchronisation d'un dossier vers www online rsync\ --server\ -vtre.iL\ --delete-during\ .\ /home/remote/www/*) echo " ... OK" >> $logFile $SSH_ORIGINAL_COMMAND ;;
# Copie d'un fichier txt vers le local scp\ -f\ /home/remote/*.txt) echo " ... OK" >> $logFile $SSH_ORIGINAL_COMMAND ;;
# Action par défaut *) echo " ... Rejected" >> $logFile echo "Rejected" ;; esac
#!/bin/sh
exec git-shell -c "$SSH_ORIGINAL_COMMAND"
Dans `~/.ssh/config`
Host final.server.com
ProxyCommand ssh neolao@proxy.server.com /usr/bin/nc %h %p 2> /dev/null