[04:14] <Octatron> Has anyone here mastered the black art of ssh tunnelling?
[04:17] <gorilla> Kind of... But waiting on approval on requisition for more chickens to sacrifice on the next full moon.
[04:24] <Octatron> gorilla: Cool well I have chickens wanting to run through chookhouse 5900 running ssh to another chookhouse at 5900 what gates (ports) need to be opened? 22 + 5900? and do the farmers have to exchange just their public keys or that and their private keys both ways?
[04:27] <gorilla> Basically you are creating a chook run as hutch 5900 at you local chookhouse. Any chook entering that hutch will be transported via hutch 22 to the remote chook house and then to 5900 on the desintation chookhouse
[04:30] <gorilla> the following should get you close: ssh -L 5900:localhost.localfarm:5900 remote.chookhouse.farm
[04:32] <gorilla> regarding the exchanging keys to the chookhouses, the same rules apply as straight ssh.
[04:35] <Octatron> gorilla: Thank you I'll give that a burn however when I do that and it asks for a password, is it for the ssh password or root password and for which chookhouse?
[04:36] <gorilla> it should be the ssh password for the remote chookhouse. Ahh. if you are trying to connect as root or root@remote.chookhouse.farm then you need to ensure that you are allowing root to loginwith password or exchange the appropriate public keys.
[04:38] <Octatron> gorilla: Do the public keys on both farms have to be placed in each chookhouse ~/? or the private keys as well? or is it one way
[04:44] <gorilla> just the public keys. Get standard ssh from one chookhouse to the other working first and then move to tunneling 5900.
[04:47] <Octatron> Gorilla: ok so is it a case of handing the keys over manually to a certain folder from a certain folder? or do I simply run a command?  Also, do I need to cut the keys first by running a command to create them then transfer, or do they already exist and I simply move them? Thanks for this btw 
[04:48] <gorilla> Octatron: yes, just copy the relevant key over. best to cut and paste the relevant line from .ssh/id_[rd]sa.pub (I'm going from memory here)
[04:51] <Octatron> gorilla: kewl, so for each farm I might have say .ssh/id_farm1.pub then id_farm2.pub etc and this would need to put into the machine I wish to pipe too from the one wishing to connect
[04:53] <gorilla> Octatron: yes, or you can use the same .pub file for all machines. It simplifies admin but if the same key is compromised that all the farms becomes accessible.
[04:54]  * gorilla wonders if we should post the transcipt of this irc conversation.
[04:55] <Octatron> I was just thinking the same thing, I think we should :P
[04:59] <Octatron> I suppose the only other thing than is to setup putty on all non-linux (Windoze) pc's and move it's repective windoze_putty.pub key across to the Linux.farm.box and watch those chooks fly!
[05:24] <gorilla> Octatron: Windows... off with their heads!
[05:25] <Octatron> gorilla: no no.. off with their cash!
[05:26]  * gorilla prefers his chooks to be headless. No need for a GUI.
[05:27] <Octatron> Thank-you I've got it working now.. I didn't put the username in on username@remote_chookhouse.farm when piping the hutches! so it was attempting to connect to the root chookhouse silly me!
[05:29] <Octatron> I tried setting up a VPN but found out too late you need server 2008 for windoze users to connect more than one user and it was super touchy and slowed the network down majorly.. businesses need a way to securely access files remotely from the roadside or elsewhere
[05:29] <gorilla> Ahh.. Yeah. no rooster connections.
[05:30] <Octatron> Yeah I don't like to root with cockpit connections unless it's needed :P
[05:30] <gorilla> Octatron: better than in the box office.
[05:34] <Octatron> gorilla: all cockfighting aside, is their a command I can run to check the chookhouse 5900 is really running through hutch 22?
[05:35] <Octatron> *thinks someone should make drag and drop gui for setting up ports and pipes with chookhouses down each side*
[05:37] <gorilla> Octatron: It will show up in netstat on the local machine.
[05:42]  * head_victim lets a bunch of chickens loose in the channel
[05:42] <Octatron> Seems netstat doesn't show me port 22 being used? do I have to indeed pipe it to grep ssh?
[05:45] <Octatron> I mean netstat doesn't show me the hutch 22 being used are the chooks running though another hutch somewhere or did the fox get them?
[05:45] <head_victim> Damn too long (sorry for the topic spam
[05:46] <Octatron> hey head_victim welcome to the farmers market :P
[05:47] <head_victim> There we go, the forum link works now
[05:54] <Octatron> head_victim how do I submit a chunk of conversation from here into the mail list?
[05:55] <head_victim> Copy and paste?
[05:56] <Octatron> Sorry that was silly :P I mean is there bits I need to delete out of the convo? 
[05:56] <gorilla> Octatron: copy and paste to a text editor and "massage" the data first :-)
[06:15] <Octatron> I've sent a chicken flavoured message to the mail-list about ssh hope it doesn't fly the coup!
[06:26] <gorilla> I'll be curious as to the reaction. :-)
[06:31] <Octatron> gorilla: they'll probably all have a cackle and scratch around the chookyard for grains of truth
[06:32] <gorilla> heh
[06:38] <head_victim> sagaci: thanks for the translation heads up, just emailed and dented/tweeted. Nice to share the good news :)
[08:47] <benonsoftware> gorilla: Sorry but do you know how many people we had at the meeting last night?
[10:45] <Fudge> do u need google + invites to join?
[10:56] <jaddi27> Fudge, do you have an invite, or would you like one?
[10:57] <Fudge> i would like one please, when i googled for it i couldnt really find anything
[10:57] <jaddi27> well I don't have any, unfortunately, but yes, you do need one to get access to it
[10:57] <jaddi27> I guess it is time to start asking people until you find someone with one
[11:00] <Fudge> cool
[11:40] <gorilla> bwright: I think we had about 6 or eight at the meeting
[11:41] <gorilla> err bensonsoftware.
[20:08] <head_victim> Fudge:  pm me the email account you would like an invite sent to if you're still looking for G+ invites (that goes for anyone else wanting invites as well,)