Re: Visual Studio Code Remote-SSH

Top Page
Attachments:
Message as email
+ (text/plain)
+ (text/html)
+ (text/plain)
Delete this message
Reply to this message
Author: Snyder, Alexander J via PLUG-discuss
Date:  
To: techlists
CC: Snyder, Alexander J, Main PLUG discussion list
New-Topics: Re: Visual Studio Code Remote-SSH - Update
Subject: Re: Visual Studio Code Remote-SSH
No, CentOS 8 had already been released when they made the announcement that
it was converting to an upstream like Fedora, and the EOL for it went from
like 2029 to like 1 year later or something crazy like that.

I had just spent 6 months wrangling with security and the CIS Benchmarks
... It had FINALLY been approved for production, then they dropped the
hammer, basically nullifying my work. My company quickly pivoted to RHEL
proper anyway, and I got to lead the project to concert around 3,000 CentOS
(6/7) servers to RHEL 7.

---
Thanks,
Alexander

Sent from my Google Pixel 7 Pro

On Sun, Dec 1, 2024, 14:13 <> wrote:

> On 2024-12-01 13:31, Snyder, Alexander J wrote:
> > I also very much dislike Ubuntu/Debian, and I very much liked CentOS.
>
> My favorite is Ubuntu. I run Kubuntu on my desktop and only Ubuntu on
> my VMs.
>
> I am a fan of how easy it was to configure a virtual host on CentOS.
>
>
> > I was sad when it was "killed". There are the "Bug-For-Bug" compatible
> > clones like AlmaLinux or RockyLinux ... I prefer to keep it original.
> > Are you aware that RedHat proper is free to use?
>
> Did not know that.
>
> >
> > Go to redhat.com [1] and create a free account, then go to
> > developer.redhat.com [2] and you can get your free developer account.
> >
> > I think it's like 20 free systems, which I find to be plenty.
> >
>
> Thanks for the heads-up.
>
> > I run my entire homelab stack on RHEL proper.
> >
>
> I'm all in with Ubuntu.
>
> Started my Linux journey with RedHat. Shortly thereafter I converted to
> Debian. I was a member of the Tucson Free Unix Group and they were all
> in for Debian.
>
> I used CentOS because I had a client that was using it. As I recall
> CentOS 5 was out for a long time. Then there was 6 and then it died.
> Am I correct?
>
>
>
>
>
> > ---
> > Thanks,
> > Alexander
> >
> > Sent from my Google Pixel 7 Pro
> >
> > On Sun, Dec 1, 2024, 13:17 <> wrote:
> >
> >> On 2024-12-01 08:10, Snyder, Alexander J wrote:
> >>> I'm not sure you're understanding what I meant when I said
> >>> "key-authentication" .... You've mentioned a few times in response
> >> to
> >>> that, that you're on a local network.
> >>>
> >>> I'm referring to SSH Keys, so you can quickly authenticate to any
> >> of
> >>> your VMs without a password.
> >>
> >> I understand. I appreciate you suggesting that. I have been aware
> >> of
> >> SSH Keys for a long time. Never have used one.
> >>
> >> I'm a PHP developer. I first came to know about Linux in around
> >> 1998.
> >> In the beginning it was this really cool counter culture thing.
> >>
> >> I'm working a project that might take another year. I'll talk about
> >> it
> >> then. It does require things be as simple as possible. Keep It
> >> Simple
> >> Stupid (KISS).
> >>
> >> I do not like using those utilities that mimic Linux that are used
> >> by
> >> some for development. I've tried them and find creating VMs on
> >> VirtualBox is far better. This requires some LAMP skills. That is
> >> my
> >> niche. I liked CentOS much better because the virtual host docroot
> >> was
> >> off the user's home directory. It was super easy to configure. Now
> >>
> >> with Ubuntu we have to use PHP-FPM so the ssh user is the docroot
> >> owner.
> >> Another layer of complexity. I have learned enough to get PHP-FPM
> >> to
> >> work... Yikes.
> >>
> >> PHP has gotten more complex as well. Things like Composer, Name
> >> Spaces,
> >> Dependency Injection... etc.
> >>
> >> I know all the fancy PHP developers are looking at me like I am
> >> crazy,
> >> and maybe I am. I don't think I am. I truly want to question what
> >> they
> >> are doing.
> >>
> >> I spent a decade on PHP5. Served me well.
> >>
> >> Several things have shaped my thought on technology.
> >>
> >> Around 1996 I experienced four things:
> >>
> >> 1) I ran into a business owner who told me he had written a Basic
> >> app to
> >> run his business.
> >>
> >> 2) I went into a warehouse that was run on a Commodore 64.
> >>
> >> 3) Met a guy that was working on a daycare management system that
> >> was
> >> based on the Commodore 64.
> >>
> >> 4) I was introduced to dBaseII.
> >>
> >> I am trying to get back to that. We need to create technology that
> >> a
> >> business owner and that middle school kid can use and do something
> >> worthwhile.
> >>
> >> So that is my story and I'm sticking to it!!
> >>
> >> Keith
> >>
> >>>
> >>> Let me know if you have any questions.
> >>>
> >>> ---
> >>> Thanks,
> >>> Alexander
> >>>
> >>> Sent from my Google Pixel 7 Pro
> >>>
> >>> On Sun, Dec 1, 2024, 07:01 <> wrote:
> >>>
> >>>> Since this is only local to my private network, I am going to
> >> start
> >>>> over. I am using virtual box and every time I upgrade I clone
> >> the
> >>>> last
> >>>> successful configuration. So in the case of a failed issue I can
> >>>> start
> >>>> over by deleting the current VM and clone the last successful VM
> >> and
> >>>>
> >>>> start over.
> >>>>
> >>>> I'm also going to uninstall VSC since it has configurations going
> >>>> back
> >>>> several years. I have high hopes for VSC....
> >>>>
> >>>> As for using key-authentication this is all local on a private
> >>>> network
> >>>> and my domains are all non-routable .internal.
> >>>>
> >>>> I use the hosts files for DNS.
> >>>>
> >>>> Wish me luck!! I may return.
> >>>>
> >>>> On 2024-11-30 15:49, Keith Smith via PLUG-discuss wrote:
> >>>>> Hi Alexander!!
> >>>>>
> >>>>> Thank you for your feedback.
> >>>>>
> >>>>>
> >>>>> On 2024-11-30 15:21, Snyder, Alexander J wrote:
> >>>>>> I use Visual Studio Code a ton. Whenever I've had an issue with
> >>>> SSH on
> >>>>>> code it's usually due to an issue in the SSHD Config.
> >>>>>>
> >>>>>> Check the "output" tab in VSC, as it'll have helpful output
> >>>> there.
> >>>>>> Typically, in the SSHD Config file you'll need:
> >>>>>>
> >>>>>> AllowAgentForwarding yes
> >>>>>> AllowTcpForwarding yes
> >>>>>> TCPKeepAlive yes
> >>>>>>
> >>>>>
> >>>>> I'll check into this.
> >>>>>
> >>>>>
> >>>>>
> >>>>>> I would also *HIGHLY* suggest using key-authentication, just in
> >>>>>> general -- but most especially when using VSC with Remote SSH.
> >>>>>>
> >>>>>
> >>>>> This is only local so I like to keep things simple.
> >>>>>
> >>>>>
> >>>>>> ---
> >>>>>> Thanks,
> >>>>>> Alexander
> >>>>>>
> >>>>>> Sent from my Google Pixel 7 Pro
> >>>>>>
> >>>>>> On Sat, Nov 30, 2024, 14:51 Keith Smith via PLUG-discuss
> >>>>>> <> wrote:
> >>>>>>
> >>>>>>> Hi,
> >>>>>>>
> >>>>>>> I am having difficulty connecting remote using Visual Studio
> >>>> Code.
> >>>>>>>
> >>>>>>> Desktop is running Kubuntu 24.04lts
> >>>>>>>
> >>>>>>> Remote is a laptop running Win10 with VirtualBox installed and
> >>>>>>> multiple
> >>>>>>> Ubuntu 24.04lts LAMP servers configured. Only one is running.
> >>>>>>>
> >>>>>>> I have 3 users
> >>>>>>>
> >>>>>>> 1) is the user installed during the Linux install. It has
> >> Sudo
> >>>>>>> privileges.
> >>>>>>> 2) A user that has SSH access that I can SSH into via the
> >>>> konsole on
> >>>>>>>
> >>>>>>> Kubuntu. This is going to be a PHP-FPM virtual host owner.
> >>>>>>> 3) A user that has SSH access that I can SSH into via the
> >>>> konsole on
> >>>>>>>
> >>>>>>> Kubuntu. This is going to be a PHP-FPM virtual host owner.
> >>>>>>>
> >>>>>>> I can SSH into the box remotely using SSH via the konsole on
> >>>>>>> Kubuntu.
> >>>>>>>
> >>>>>>> Users number 2 and three do not have sudo.
> >>>>>>>
> >>>>>>> I can access the virtual hosts via FileZilla using user 2 and
> >> 3.
> >>>>>>>
> >>>>>>> I can remote (VSC) into the VM using my sudo user that does
> >> not
> >>>> own
> >>>>>>> any
> >>>>>>> vhosts.
> >>>>>>>
> >>>>>>> I will be installing and configuring PHP-FPM so my virtual
> >> hosts
> >>>>>>> will be
> >>>>>>> owned by a SSH user so I can do programming in real time /
> >>>> remote.
> >>>>>>>
> >>>>>>> AI gave me a list of things to do and test which I did, such
> >> as
> >>>>>>>
> >>>>>>> - Set /etc/ssh/sshd_config to PasswordAuthentication yes.
> >> Local
> >>>> and
> >>>>>>> remote are set to PasswordAuthentication yes
> >>>>>>>
> >>>>>>> - sudo tail -f /var/log/syslog - nothing looks like it has
> >>>> anything
> >>>>>>> to
> >>>>>>> do with VSC.
> >>>>>>>
> >>>>>>> - ssh -vvv lamp@ip-address
> >>>>>>>
> >>>>>>> which returns a bunch of stuff and then asks me for the
> >> password
> >>>> for
> >>>>>>>
> >>>>>>> lamp@ip-address then connects the konsole w/o an issue:
> >>>>>>>
> >>>>>>> debug3: kex_input_ext_info: extension
> >>>>>>>
> >>>>>>> debug1: kex_ext_info_check_ver:
> >>>> =<0>
> >>>>>>> debug3: kex_input_ext_info: extension
> >>>>>>> debug1: kex_ext_info_check_ver: =<0>
> >>>>>>> debug3: receive packet: type 6
> >>>>>>> debug2: service_accept: ssh-userauth
> >>>>>>> debug1: SSH2_MSG_SERVICE_ACCEPT received
> >>>>>>> debug3: send packet: type 50
> >>>>>>> debug3: receive packet: type 7
> >>>>>>> debug1: SSH2_MSG_EXT_INFO received
> >>>>>>> debug3: kex_input_ext_info: extension server-sig-algs
> >>>>>>> debug1: kex_ext_info_client_parse:
> >>>>>>>
> >>>>>>
> >>>>
> >>>
> >>
> >
> server-sig-algs=<ssh-ed25519,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
> ,
> ,rsa-sha2-512,rsa-sha2-256>
> >>>>>>> debug3: receive packet: type 51
> >>>>>>> debug1: Authentications that can continue: publickey,password
> >>>>>>> debug3: start over, passed a different list publickey,password
> >>>>>>> debug3: preferred
> >>>>>>> gssapi-with-mic,publickey,keyboard-interactive,password
> >>>>>>> debug3: authmethod_lookup publickey
> >>>>>>> debug3: remaining preferred: keyboard-interactive,password
> >>>>>>> debug3: authmethod_is_enabled publickey
> >>>>>>> debug1: Next authentication method: publickey
> >>>>>>> debug3: ssh_get_authentication_socket_path: path
> >>>>>>> '/tmp/ssh-2bwrFHjD6Cmc/agent.1207'
> >>>>>>> debug1: get_agent_identities: bound agent to hostkey
> >>>>>>> debug1: get_agent_identities: ssh_fetch_identitylist: agent
> >>>> contains
> >>>>>>> no
> >>>>>>> identities
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_rsa
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_ecdsa
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_ecdsa_sk
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_ed25519
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_ed25519_sk
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_xmss
> >>>>>>> debug1: Will attempt key: /home/keith/.ssh/id_dsa
> >>>>>>> debug2: pubkey_prepare: done
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_rsa
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_rsa: No such
> >> file
> >>>> or
> >>>>>>> directory
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_ecdsa
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_ecdsa: No such
> >>>> file or
> >>>>>>>
> >>>>>>> directory
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_ecdsa_sk
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_ecdsa_sk: No
> >> such
> >>>> file
> >>>>>>> or
> >>>>>>> directory
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_ed25519
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_ed25519: No such
> >>>> file
> >>>>>>> or
> >>>>>>> directory
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_ed25519_sk
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_ed25519_sk: No
> >>>> such
> >>>>>>> file
> >>>>>>> or directory
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_xmss
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_xmss: No such
> >> file
> >>>> or
> >>>>>>> directory
> >>>>>>> debug1: Trying private key: /home/keith/.ssh/id_dsa
> >>>>>>> debug3: no such identity: /home/keith/.ssh/id_dsa: No such
> >> file
> >>>> or
> >>>>>>> directory
> >>>>>>> debug2: we did not send a packet, disable method
> >>>>>>> debug3: authmethod_lookup password
> >>>>>>> debug3: remaining preferred: ,password
> >>>>>>> debug3: authmethod_is_enabled password
> >>>>>>> debug1: Next authentication method: password
> >>>>>>>
> >>>>>>> - - - - -
> >>>>>>>
> >>>>>>> Any Thoughts Much Appreciated!!
> >>>>>>>
> >>>>>>> Keith
> >>>>>>>
> >>>>>>> ---------------------------------------------------
> >>>>>>> PLUG-discuss mailing list:
> >>>>>>> To subscribe, unsubscribe, or to change your mail settings:
> >>>>>>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss
> >>>>> ---------------------------------------------------
> >>>>> PLUG-discuss mailing list:
> >>>>> To subscribe, unsubscribe, or to change your mail settings:
> >>>>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss
> >
> >
> > Links:
> > ------
> > [1] http://redhat.com
> > [2] http://developer.redhat.com
>

---------------------------------------------------
PLUG-discuss mailing list:
To subscribe, unsubscribe, or to change your mail settings:
https://lists.phxlinux.org/mailman/listinfo/plug-discuss