This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.
I am still unable to access stage.netbeans.org or cvs.stage.netbeans.org via ssh. I have tried this from 2 seperate machines/accounts whose public keys should be in authorized_keys. ssh access to cvs.netbeans.org works fine for both these accounts. This has been reported repeatedly during the testing, but still seems to be bust, unless we're using the wrong hostname. Account 1 : jc97959@viscous.czech. SSH to current server works fine : [jc97959@viscous]: tmp $ ssh upload@cvs.netbeans.org ls -l |head total 623448 -rw-r--r-- 1 upload upload 39303 May 26 2004 3rd-party-license-readme.html drwxr-xr-x 10 upload upload 4096 Oct 4 2005 4_0 drwxr-xr-x 10 upload upload 4096 Oct 4 2005 4_1 drwxr-xr-x 4 upload upload 4096 Oct 4 2005 4_2 drwxr-xr-x 15 upload upload 4096 Jun 1 02:32 5_0 drwxr-xr-x 4 upload upload 4096 Feb 2 20:55 5_1 drwxr-xr-x 8 upload upload 4096 Jun 1 03:26 5_5 drwxr-xr-x 3 upload upload 4096 Feb 16 05:15 5_5. drwxr-xr-x 6 upload upload 4096 Jun 1 01:10 6_0 SSH to new staging box does not work : [jc97959@viscous]: tmp $ ssh upload@cvs.stage.netbeans.org ls -l |head upload@cvs.stage.netbeans.org's password: Permission denied, please try again. upload@cvs.stage.netbeans.org's password: Permission denied, please try again. upload@cvs.stage.netbeans.org's password: Permission denied (publickey,password,keyboard-interactive). Maybe I have the hostname wrong, try stage.netbeans.org, but that doesn't work either : [jc97959@viscous]: tmp $ ssh upload@stage.netbeans.org ls -l |head The authenticity of host 'stage.netbeans.org (<no hostip for proxy command>)' can't be established. RSA key fingerprint is 1b:fb:b7:f8:98:a1:da:0c:75:78:5a:96:5d:4f:53:54. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added 'stage.netbeans.org' (RSA) to the list of known hosts. upload@stage.netbeans.org's password: Permission denied, please try again. upload@stage.netbeans.org's password: Permission denied, please try again. upload@stage.netbeans.org's password: Permission denied (publickey,password,keyboard-interactive). Account 2 : nbweb@nbweb.czech. SSH to current server works fine : [nbweb@nbweb nbweb]$ ssh upload@cvs.netbeans.org ls -l |head total 623448 -rw-r--r-- 1 upload upload 39303 May 26 2004 3rd-party-license-readme.html drwxr-xr-x 10 upload upload 4096 Oct 4 2005 4_0 drwxr-xr-x 10 upload upload 4096 Oct 4 2005 4_1 drwxr-xr-x 4 upload upload 4096 Oct 4 2005 4_2 drwxr-xr-x 15 upload upload 4096 Jun 1 02:32 5_0 drwxr-xr-x 4 upload upload 4096 Feb 2 20:55 5_1 drwxr-xr-x 8 upload upload 4096 Jun 1 03:26 5_5 drwxr-xr-x 3 upload upload 4096 Feb 16 05:15 5_5. drwxr-xr-x 6 upload upload 4096 Jun 1 01:10 6_0 SSH to staging server does not work : [nbweb@nbweb nbweb]$ ssh upload@cvs.stage.netbeans.org ls -l |head upload@cvs.stage.netbeans.org's password: Permission denied, please try again. upload@cvs.stage.netbeans.org's password: Permission denied, please try again. upload@cvs.stage.netbeans.org's password: Permission denied. Maybe I have the hostname wrong, try stage.netbeans.org, but that doesn't work either : [nbweb@nbweb nbweb]$ ssh upload@stage.netbeans.org ls -l |head The authenticity of host 'stage.netbeans.org (<no hostip for proxy command>)' can't be established. RSA1 key fingerprint is 5a:26:5d:07:82:5d:83:75:5b:0d:fd:72:9a:4e:20:d2. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added 'stage.netbeans.org' (RSA1) to the list of known hosts. upload@stage.netbeans.org's password: Permission denied, please try again. upload@stage.netbeans.org's password: Permission denied, please try again. upload@stage.netbeans.org's password: Permission denied. Pls advise. This is a P1, we need this working as soon as nb.org comes up.
Jack, Rudolph, This should be now resolved. We copied over the exisiting authorized_keys file from the production server over to the stage box (for the upload user). This was not done earlier. I verified it is working for me; hence closing it. Please re-open if you still have issues. BTW, on the production box the keys will remain as they are for the upload user; so rest assured there won't be any issue on the production day.
Need SSH protocol 1 support for RSA auth keys in ~/.ssh/identity
rbalada, We would require some more information regarding your request. Aniruddha would be contacting you in this regard. Regards, Karishma Support Operations
Hi Rudolph, I was told that we don't restrict ssh1 or ssh2 usage on netbeans.org nor on stage.netbeans.org. You should be able to use ssh1 or ssh2 depending on the ssh key you gave us to put into the keys file. However, if you would like to check if your key is correct on the stage.netbeans.org we can check that for you; just attach the key to compare with.
I'll check /etc/ssh/ssh_config file.
I'm sorry for bugging. The host did not have updated configuration in /etc/ssh/ssh_config to enable Protocol 1 for staging server. I'll make sure, all our hosts are configured for staging server as well.
Hi guys, I can confirm I am able to ssh connect to staging box with the key used for regular box , also can upload test file and preview it in the browser. http://www.stage.netbeans.org/download/data/junk2.txt
Confirmed this now works. Please confirm that this step, which was clearly missed in practice runs, has now been added to the upgrade task list. Tested scp $file, scp -rp $dir, ssh rm $file, ssh rm -R $file, all work. Rudo, pls note "ssh rm -r" no longer works, we must use "ssh rm -R". Last issue here - "data/" should not appear in the mapping. The root dir we have access to via ssh should map to download/, just like it does on the live server now.
x
Based on Jack's comments marking this as verified
Oops! Completly missed the question in desc9. I have contact the relevant team to check about the upgrade task list. I will update once I hear from them. Thanks Padma
Thanks!
This is what I heard from the operations team: <snip> All keys are located in the data directory itself, and would automatically be part of the data set which is copied for stage. It is also routine for the sys admin who stages to set the value of the Tunnel and Upload users as they are in production. </snip> I will work with Sripriya to make sure that this is tested in the stage site.
Well that sounds good ... except that clearly it didn't happen in this case (keys were not copied over). Existing procedure (at least at the time of this issue) did not work. Can you confirm that something has been changed to address this ?
We recently moved out from Collabnet's infrastructure