Skip to content

der-jd.de

ssh

der-jd.de

Home
Cheatsheets
Cheatsheets
- Cloud
  Cloud
- Configuration Management
  Configuration Management
  - Ansible
- Markup Languages
  Markup Languages
  - Markdown
- Script Languages
  Script Languages
  - awk
  - Bash
  - Python
- Tools
  Tools
  - BareOS
  - git
  - GPG
  - nginx
  - nmap
  - OpenSSL
  - ssh ssh
    Table of contents
    
    privilege escalation
    
    Socks Proxy
  - vim
Arch Linux
Arch Linux
BareOS
BareOS
- Prerequirements
  Prerequirements
  - BareOS
  - Mysql
  - Puppet
- Puppet
  Puppet
- Daemons
  Daemons
Monitoring
Monitoring
- Aktueller Stand
  Aktueller Stand
  - Aufbau
  - Nagios3
  - Collectd
  - Reporting
  - Anforderungen
- Icinga2
  Icinga2
- Graphite
  Graphite
  - Graphite
- InfluxDB
  InfluxDB
  - InfluxDB
Patroni
Patroni
- Upgrade postgresql within patroni
Python MailCow
Python MailCow
- Quick Start
- Command Line usage
- Python API usage
- Reference
  Reference
Python MkBlog
Python MkBlog
- Quick Start
- Reference
  Reference
  - Mkblog
Static Site Generators
Static Site Generators
- Docusaurus
  Docusaurus
  - Docusaurus
  - Docker
  - Gitlab
- MkDocs
  MkDocs
  - MkDocs
  - GitLab
Blog
Blog
- 2018
  2018
  - 04
    04
    
    28
    28
    
    Blog mit Gitlab Pages und Jekyll
    
    30
    30
    
    Blöcke ausblenden in Markdown
  - 05
    05
    
    03
    03
    
    OpenStack Client openrc config in cloud.yaml auslagern
    
    12
    12
    
    Jekyll adé. Hallo docusaurus.
  - 07
    07
    
    19
    19
    
    nginx dynamic SNI TCP forwarding with docker
  - 12
    12
    
    27
    27
    
    can not delete OpenStack Volumes after ceph upgrade to Luminous
- 2019
  2019
  - 01
    01
    
    09
    09
    
    Update extern_uid / DN for gitlab LDAP users
  - 04
    04
    
    19
    19
    
    Using ansible-vault with password store and gpg-agent
  - 09
    09
    
    30
    30
    
    Identify failed drive
  - 10
    10
    
    09
    09
    
    x2goclient Invalid MIT-MAGIC-COOKIE-1
- 2020
  2020
  - 02
    02
    
    10
    10
    
    Install ZFS on Linux as root filesystem on Archlinux with native encryption, tinyssh, grub and efi
  - 04
    04
    
    04
    04
    
    Autoscaling gitlab-runners with docker-machine on OpenStack
- 2021
  2021
  - 01
    01
    
    01
    01
    
    Using templates in gitlab-ci
    
    02
    02
    
    GitLab CI/CD pipelines running ansible
    
    03
    03
    
    Three ways of sharing ansible inventories
    
    28
    28
    
    Run gitlab-ci jobs on your workstation
  - 03
    03
    
    22
    22
    
    How to turn your OpenWRT router into a PXE server for hardware installations from your couch
  - 04
    04
    
    16
    16
    
    Using podman instead of docker for your gitlab-runner as docker executor
Links
Links
- GitLab
- Foreman
- Grafana
- MailCow
- SoGo

ssh¶

privilege escalation¶

By enabling pseudo-terminal with -t you can sudo into your root shell immediately.

$ ssh -t ansible@centos8 sudo -i
X11 forwarding request failed on channel 0
[root@centos8 ~]#

Socks Proxy¶

This will start and stop SOCKS proxies with SSH in a daemon like fashion.

Start a SOCKS proxy session

ssh \
    -f \ # Move ssh into background
    -N \ # Don't execute remote commands
    -M \ # Run ssh in "master" mode. This enables sending multiple commands over one session
    -S ~/.ssh/%C.sock \ # Control Socket for the session
    -D $PORT \ # Port for dynamic Port App Portforwarding aka SOCKS proxy port
    $SSH # SOCKS proxy Host

End the SOCKS proxy session

ssh \
    -S ~/.ssh/%C.sock \ # Control Socket for the session
    -O exit \ # Command send over Control socket
    $SSH # SOCKS proxy Host

Last update: September 8, 2021