Bits and pieces so that you can get passwordless root logins onto GCE servers.
#how-to: okay folks, this one is nothing fancy. Just do like such
-
fork this repo
-
'git clone https://github.com/faddat/securitygodsforgiveme'
-
'cat ~/.ssh/id_rsa.pub'
-
copy your ssh key into the clipboard (there's a comand just for this and it's handy but it's late and I cannot remember the name)
-
'nano securitygodsforgiveme/startup.sh'
-
paste your ssh key where I've put a bunch of bold text explaining that ssh keys placed here will get passwordless ssh access, making sure that you first delete all of the bold text "BETWEEN THE QUOTATION MARKS"
-
'gcloud auth login' (blah, blah....)
- If you don't have a bucket set up, you set one up like this: gsutil mb gs://fuckyeahchicken/ (or whatever)
-
gsutil cp startup.sh gs://bucketnamehere/startup.sh sshd_config gs://bucketnamehere/sshd_config
-
Okay, now go to console.developers.google.com and either make a single neuternode by setting up an instance with gs://bucketnamehere/startup.sh as the startup script. Right now this will only work with debian-based OSES.
- Passwordless SSH
- Following digitalocean directions
- completing myriad tasks that do not assume that you're working in Google's cloud
- Ansible
- using an instance group to make yourself 10 identical micro instances and then using paralell ssh to manipulate them all in the same way
- ......and many, many more to come!
Google's cloud is FREAKING GREAT. I love the management interface, I love the power, to say I am blown away by the sheer coolness of what they've assembled would be putting it very lightly. This said, there were too many situations when I needed to access my resources in Gcloud without using the 'gcloud compute salsfkj;lasfjoagh" commands. In order to do what I needed, I just needed to be root, pop in, and pop back out. This lets you do that very quickly.