[rancid] Re: Netscreen/OpenSSH interaction problem
Michael W. Lucas
mwlucas at blackhelicopters.org
Wed May 20 18:23:40 UTC 2009
On Tue, May 19, 2009 at 02:24:00PM -0700, john heasley wrote:
> Tue, May 19, 2009 at 02:23:07PM -0700, john heasley:
> > Tue, May 19, 2009 at 05:12:11PM -0400, Michael W. Lucas:
> > > On Tue, May 19, 2009 at 01:01:49PM -0700, john heasley wrote:
> > > > Tue, May 19, 2009 at 03:16:30PM -0400, Michael W. Lucas:
> > > > > Hi,
> > > > >
> > > > > I've found myself inheriting responsibility for a stack of Netscreen
> > > > > boxes, and of course I want their configurations backed up.
> > > > >
> > > > > There's a problem with interactions between newer versions of OpenSSH
> > > > > and Netscreens, however. To SSH into a Netscreen with newer OpenSSH,
> > > > > you must add the option "-o ControlMaster=auto" to the SSH command
> > > > > line.
> > > > >
> > > > > Is there any way to pass this option to the Rancid SSH command for my
> > > > > Netscreen hosts?
> > > >
> > > > see sshcmd in cloginrc(5). If I failed to disseminate that change to
> > > > all of the login scripts, we can fix that.
> > >
> > > That was exactly it, thanks!
> > >
> > > For anyone following along in the archives: you'll want to use a
> > > wrapper script much like the following. Trying to escape spaces with
> > > backslashes, quote marks, etc., doesn't appear to work.
> > >
> > > --
> > > #!/bin/sh
> > >
> > > exec ssh -oControlMaster=auto $@
> > > --
> >
> > i'd have expected
> > add sshcmd * {ssh -o...}
> >
> > would have done it
>
> Sorry for the extra mail, I should have written:
>
> add sshcmd * {ssh\ -o...}
Thanks for the help, your way certainly would be nicer.
I added this to my clogin:
add sshcmd aubvp003 {ssh\ -oControlMaster\=auto}
# clogin aubvp003
aubvp003
spawn {ssh\ -oControlMaster\=auto} -c 3des -x -l netscreen aubvp003
Error: {ssh\ -oControlMaster\=auto} failed: couldn't execute "": no such file or directoryerror setting blocking mode: resource temporarily unavailable
#
Any thoughts? (Not recalling if = needs an escape, I tried both with
and without.)
Thanks,
==ml
--
Michael W. Lucas mwlucas at BlackHelicopters.org, mwlucas at FreeBSD.org
http://www.BlackHelicopters.org/~mwlucas/
Latest book: Cisco Routers for the Desperate, 2nd Edition
http://www.CiscoRoutersForTheDesperate.com/
More information about the Rancid-discuss
mailing list