Wiki.Cyli.Org

User Tools

Site Tools

Trace: remote_assistance start remote_desktop_connection update how 7zip_benchmark
remote_assistance

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
remote_assistance [2023/10/19 16:06] steveremote_assistance [2025/10/02 23:27] (current) steve
Line 53: Line 53:
 #!/bin/bash #!/bin/bash
 # This script sets up most everything you should need for a Remote Assistance # This script sets up most everything you should need for a Remote Assistance
- 
-# First, and foremost, we need to have OpenSSH Server installed; 
-sudo apt-get install openssh-server 
  
 # A function to create log files; # A function to create log files;
Line 63: Line 60:
 tee -a ~/.Logs/$(date +"%Y-%m-%d.txt") tee -a ~/.Logs/$(date +"%Y-%m-%d.txt")
 } }
 +
 +# First, and foremost, we need to have OpenSSH Server installed;
 +sudo apt-get install openssh-server | Log
  
 # Set up the keys # Set up the keys
-mkdir -m 0705 -p ~/.ssh+mkdir -m 0700 -p ~/.ssh
 cp /mnt/AssistanceKey ~/.ssh/ cp /mnt/AssistanceKey ~/.ssh/
-chmod 0600 .ssh/AssistanceKey+chmod 0600 ~/.ssh/AssistanceKey
 cp /mnt/AssistanceKey.pub ~/.ssh/ cp /mnt/AssistanceKey.pub ~/.ssh/
-chmod 0644 .ssh/AssistanceKey.pub +chmod 0644 ~/.ssh/AssistanceKey.pub 
-cat .ssh/AssistanceKey.pub >> .ssh/authorized_keys +cat ~/.ssh/AssistanceKey.pub >> ~/.ssh/authorized_keys 
-chmod 0644 .ssh/authorized_keys+chmod 0644 ~/.ssh/authorized_keys
  
  
 mkdir ~/bin mkdir ~/bin
 cd ~/bin cd ~/bin
 +
 # The construction below creates a file (adminaccess.service) and then cats  # The construction below creates a file (adminaccess.service) and then cats 
 # everything to it until it matches the string 'EndOfText'. The dash strips # everything to it until it matches the string 'EndOfText'. The dash strips
-# out the leading tab that was added to make this easier to read.  +# out the leading tab that was added to make this easier to read. The "$(whoami)" 
-cat <<'EndOfText> adminaccess.service+# returns the user you're logged in as, and this is the user that will get assistance
 +cat <<- EndOfText > adminaccess.service
  [Unit]  [Unit]
  Description=Permit admin access from secretuser@cyli.org  Description=Permit admin access from secretuser@cyli.org
Line 104: Line 106:
  WantedBy=multi-user.target  WantedBy=multi-user.target
 EndOfText EndOfText
 +
 chmod a+x adminaccess.service chmod a+x adminaccess.service
 sudo cp adminaccess.service /etc/systemd/system/adminaccess.service sudo cp adminaccess.service /etc/systemd/system/adminaccess.service
 echo "Added adminaccess.service (1)" | Log echo "Added adminaccess.service (1)" | Log
  
-cat <<- 'EndOfText'Help+# Script below is a helper to enable the service, the "'" around EndOfText makes 
 +# The variables remain as variable instead of expanding. 
 +cat <<- 'EndOfText'Steve
  #!/bin/bash  #!/bin/bash
  # This script connects to cyli.org for assistance, opening  # This script connects to cyli.org for assistance, opening
Line 124: Line 129:
  esac  esac
 EndOfText EndOfText
-chmod a+x Help +chmod a+x Steve 
-echo "Added Help (2)" | Log+echo "Added Steve script (2)" | Log
  
 EndOfScript EndOfScript
Line 137: Line 142:
 It should create a folder or two, and a script to use to make the tunnel. It should create a folder or two, and a script to use to make the tunnel.
  
-When the user needs assistance, have them run the 'Help' command, then, on your server, do the following;+When the user needs assistance, have them run the 'Steve' command, then, on your server, do the following;
 <code> <code>
 sudo su - secretuser sudo su - secretuser
 # You need access to the keys. # You need access to the keys.
-ssh -i ~/.ssh/AssistanceKey -p 2223 <remote users login>@localhost+ssh -i ~/.ssh/AssistanceKey -p 2223 <remote user login@>localhost
 # This should log you in to their machine, as them. # This should log you in to their machine, as them.
 # Do what you need to do to fix any issues, have the user verify the work, then; # Do what you need to do to fix any issues, have the user verify the work, then;
-Help q+Steve q
 # To shut down the session, or use 'logout' if you may need to reconnect. # To shut down the session, or use 'logout' if you may need to reconnect.
-# Until you run 'Help q' or 'Help x', the tunnel will persist, through restarts of either end.+# Until you run 'Steve q' or 'Steve x', the tunnel will persist, through restarts of either end.
 </code> </code>
  
Line 152: Line 157:
 <code> <code>
 Host Betty Host Betty
-Hostname localhost +    Hostname localhost 
-Port 2223 +    Port 2223 
-User betty +    User betty 
-ForwardX11 yes  +    ForwardX11 yes  
-IdentityFile ~/.ssh/AssistanceKey+    IdentityFile ~/.ssh/AssistanceKey
 </code> </code>
  
 Then, when Betty calls needing assistance, all you need to type is 'ssh Betty' Then, when Betty calls needing assistance, all you need to type is 'ssh Betty'
  
-nice thing to do, create an entry in /etc/sudoers.d/Help+Another nice thing to do, create an entry in /etc/sudoers.d/Steve
 <code> <code>
 Cmnd_Alias SystemCTL = /usr/bin/systemctl Cmnd_Alias SystemCTL = /usr/bin/systemctl
Line 169: Line 174:
 Note that the connections can be made as any user that has those keys, so if you copy AssistanceKey from secretuser to your own ~/.ssh/ then you shouldn't need to become another user. Note that the connections can be made as any user that has those keys, so if you copy AssistanceKey from secretuser to your own ~/.ssh/ then you shouldn't need to become another user.
  
-Another nice thing to do is to set up a [[Shared 'screen' session]] on the Assisted user's machine, it could even be set up as part of the 'Help' command to automatically connect the Assisted user to that screen. Maybe even close out the session when they press Ctrl-D. +Another nice thing to do is to set up a [[Shared 'screen' session]] on the Assisted user's machine, it could even be set up as part of the 'Steve' command to automatically connect the Assisted user to that screen. Maybe even close out the session when they press Ctrl-D.
remote_assistance.1697731595.txt.gz · Last modified: by steve