Sftp
With this MR the URL to access galaxy have changed to:
-
Installing on ubuntu to configure uploads. Also on ubuntu the default proftpd config disables anonymous access, whereas it did not on centos -
Setting up Proftp on nginx server per recommendation on https://docs.galaxyproject.org/en/latest/admin/special_topics/ftp.html. using https://github.com/galaxyproject/ansible-proftpd -
Configure sftp on proftp per https://docs.galaxyproject.org/en/latest/admin/special_topics/ftp.html#further-security-measures (chosen port 2222) -
Allow only SFTP connections and no FTP connections (via <Limit LOGIN>
directive) -
Disable SFTP Access on the SSH Port.
If I access via port 21 in Filezilla I get ssh_init: nodename nor servname provided, or not known
Commande : open "nicole.charriere@france-bioinformatique.fr@galaxy-nginx-ubuntu-dev.dev.ifb.local" 21
Erreur : ssh_init: nodename nor servname provided, or not known
In command line I get Connection closed by remote host
MacBook-Pro-nc:~ nc-ifb$ sftp -P 21 nicole.charrier@france-bioinformatique.fr@192.168.105.105 -v
ssh_exchange_identification: Connection closed by remote host
Current settings:
- the nginx machine can only access /shared/mfs/data/galaxy . So it cannot access /shared/home/
- Only root can access the nginx machine via ssh. Other users get a message "This service allows sftp connections only."
MacBook-Pro-nc:~ nc-ifb$ ssh ncharriere@192.168.105.105
ncharriere@192.168.105.105's password:
This service allows sftp connections only.
Connection to 192.168.105.105 closed.
Edited by Julien Seiler