Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

knife-ssh(1) [debian man page]

KNIFE-SSH(1)							    Chef Manual 						      KNIFE-SSH(1)

NAME

       knife-ssh - Run a command or interactive session on multiple remote hosts

SYNOPSIS

       knife ssh QUERY COMMAND (options)

       -a, --attribute ATTR
	      The attribute to use for opening the connection - default is fqdn

       -C, --concurrency NUM
	      The number of concurrent connections

       -m, --manual-list
	      QUERY is a space separated list of servers

       -P, --ssh-password PASSWORD
	      The ssh password

       -x, --ssh-user USERNAME
	      The ssh username

       -i, --identity-file IDENTITY_FILE
	      The SSH identity file used for authentication

       -p, --ssh-port PORT
	      The ssh port

       --[no-]host-key-verify
	      Verify host key, enabled by default.

DESCRIPTION

       The  ssh  sub-command  opens  an  ssh  session  to each of the nodes in the search results of the QUERY. This sub-command requires that the
       net-ssh-multi and highline Ruby libraries are installed. On Debian systems, these are the libnet-ssh-multi-ruby and libhighline-ruby  pack-
       ages. They can also be installed as RubyGems (net-ssh-multi and highline, respectively).

TERMINAL MULTIPLEXING AND TERMINAL TAB SUPPORT

       knife  ssh integrates with several terminal multiplexer programs to provide a more convenient means of managing multiple ssh sessions. When
       the COMMAND option matches one of these, knife ssh will create multiple interactive ssh sessions running locally  in  the  terminal  multi-
       plexer instead of invoking the command on the remote host.

       The available multiplexers are:

       interactive
	      A built-in multiplexer. interactive supports running commands on a subset of the connected hosts in parallel

       screen(1)
	      Runs ssh interactively inside screen. ~/.screenrc will be sourced if it exists.

       tmux(1)
	      Runs ssh interactively inside tmux.

       macterm (Mac OS X only)
	      Opens  a	Terminal.app  window and creates a tab for each ssh session. You must install the rb-appscript gem before you can use this
	      option.

SEE ALSO

       knife-search(1)

AUTHOR

       Chef was written by Adam Jacob adam@opscode.com with many contributions from the community.

DOCUMENTATION

       This manual page was written by Joshua Timberman joshua@opscode.com. Permission is granted to copy, distribute and / or modify  this  docu-
       ment under the terms of the Apache 2.0 License.

CHEF

       Knife is distributed with Chef. http://wiki.opscode.com/display/chef/Home

Chef 10.12.0							     June 2012							      KNIFE-SSH(1)

Check Out this Related Man Page

ssh-keysign(1M)                                                                                                                    ssh-keysign(1M)

NAME

       ssh-keysign - ssh helper program for host-based authentication

SYNOPSIS

       ssh-keysign

       ssh-keysign  is  used  by ssh(1) to access the local host keys and generate the digital signature required during host-based authentication
       with SSH protocol version 2. This signature is of data that includes, among other items, the name of the client host and the  name  of  the
       client user.

       ssh-keysign  is  disabled  by  default and can be enabled only in the global client configuration file /etc/ssh/ssh_config by setting Host-
       basedAuthentication to yes.

       ssh-keysign is not intended to be invoked by the user, but from ssh. See ssh(1) and sshd(1M) for more information about host-based  authen-
       tication.

       /etc/ssh/ssh_config

           Controls whether ssh-keysign is enabled.

       /etc/ssh/ssh_host_dsa_key
       /etc/ssh/ssh_host_rsa_key

           These  files  contain the private parts of the host keys used to generate the digital signature. They should be owned by root, readable
           only by root, and not accessible to others. Because they are readable only by root, ssh-keysign must  be  set-uid  root  if  host-based
           authentication is used.

       ssh-keysign will not sign host-based authentication data under the following conditions:

         o  If the HostbasedAuthentication client configuration parameter is not set to yes in /etc/ssh/ssh_config. This setting cannot be overri-
            den in users' ~/.ssh/ssh_config files.

         o  If the client hostname and username in /etc/ssh/ssh_config do not match the canonical hostname of  the  client  where  ssh-keysign  is
            invoked and the name of the user invoking ssh-keysign.

       In  spite of ssh-keysign's restrictions on the contents of the host-based authentication data, there remains the ability of users to use it
       as an avenue for obtaining the client's private host keys. For this reason host-based authentication is turned off by default.

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE         |      ATTRIBUTE VALUE        |
       +-----------------------------+-----------------------------+
       |Availability                 |SUNWsshu                     |
       +-----------------------------+-----------------------------+
       |Interface Stability          |Evolving                     |
       +-----------------------------+-----------------------------+

       ssh(1), sshd(1M), ssh_config(4), attributes(5)

AUTHORS

       Markus Friedl, markus@openbsd.org

HISTORY

       ssh-keysign first appeared in Ox 3.2.

                                                                    9 Jun 2004                                                     ssh-keysign(1M)
Man Page