Page 1 of 1

ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp

Posted: Sun Aug 25, 2019 7:55 am
by nhdesign
What are these processes? Did I start them? Is it a new Sonic Feature?
Why can't Sonic support forward this to someone? Why do I wait two days for them to tell me to post it in a forum?

nhdesign 13754 0.0 0.0 183828 7460 ? S Aug06 2:58 ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp
nhdesign 13792 0.0 0.0 986528 15644 ? Ssl Aug06 2:34 sshfs sftp-server.local:/home/n/nhdesign /chr/nhdesign/home/n/nhdesign -o gid=501,nonempty,nosuid,nodt
nhdesign 13860 0.0 0.0 181084 4536 ? S Aug06 0:04 ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp
nhdesign 13882 0.0 0.0 609560 1184 ? Ssl Aug06 0:02 sshfs sftp-server.local:/web/nhdesign /chr/nhdesign/web/nhdesign -o gid=501,nonempty,nosuid,nodev,allt
nhdesign 13914 0.0 0.0 180900 4536 ? S Aug06 0:02 ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp
nhdesign 13915 0.0 0.0 757624 4172 ? Ssl Aug06 0:03 sshfs sftp-server.local:/logs/by_user/nhdesign /chr/nhdesign/logs/by_user -o gid=501,nonempty,nosuid,t
nhdesign 13975 0.0 0.0 180968 4736 ? S Aug06 0:03 ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp
nhdesign 13976 0.0 0.0 609556 2780 ? Ssl Aug06 0:02 sshfs sftp-server.local:/ftp /chr/nhdesign/ftp -o gid=501,nonempty,nosuid,nodev,allow_root,reconnect

Re: ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp

Posted: Sun Aug 25, 2019 8:04 am
by ds_sonic_asif
https://help.sonic.com/hc/en-us/articles/360009761054-Shell-Access
All network directory mounts are handled using sshfs -- NFS is not used to access user directories.


https://en.wikipedia.org/wiki/SSHFS

Re: ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp

Posted: Sun Sep 01, 2019 7:13 am
by nhdesign
I have been killing these off with no adverse effects. They come
back every time I move files. Should they quit themselves after
the file transfer? Should they clear when I log out? Do they
indicate an open connection to somewhere? Are they a security
issue?

Re: ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp

Posted: Tue Sep 03, 2019 10:56 am
by kgc
The shell server is using sshfs in order to sandbox and secure users from each other. You should just ignore them as they are a built in part of the environment.

Re: ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp

Posted: Wed Sep 11, 2019 11:20 am
by scott
Sorry I was asleep at the switch.

Yes, new shell server uses sshfs for user mounts -- and believe me, that wasn't easy to pull off. ;)

Killing off your underlying filesystem processes can lead to, ahem, "undefined behavior". (Translation: You'll either get "transport endpoint not connected", or it'll just hang.)

I've had email inquiries from other folks "out there on the net" asking how we went about doing this, and I've been meaning to write it up. I have an internal document atm describing how most of it works for system administrators, but it needs some update, as more was added to the shell system after that was written.

-Scott

Re: ssh -x -a -oClearAllForwardings=yes -2 sftp-server.local -s sftp

Posted: Wed Sep 11, 2019 12:00 pm
by ds_sonic_asif
scott wrote:
Yes, new shell server uses sshfs for user mounts -- and believe me, that wasn't easy to pull off. ;)

I've had email inquiries from other folks "out there on the net" asking how we went about doing this, and I've been meaning to write it up. I have an internal document atm describing how most of it works for system administrators, but it needs some update, as more was added to the shell system after that was written.

Please do. I've always used sshfs at the command line and never taken a crack at automating it.