Ssh – autofs can’t mount a remote dir with sshfs on the host with deprecated key algorithm

autofsautomounthostkeysshsshfs

Here is my configuration:

/etc/auto.master

/mnt/10       /etc/auto.10 uid=0,gid=0,--ghost

/etc/auto.10

root -fstype=fuse,allow_other,follow_symlinks,ssh_command=/etc/ssh/sshpass.10.sh    :sshfs\#root@10.28.0.10\:/root

Because the remote device is an appliance and it doesn't have an ability to save a key to do a passwordless login, I have to pass a password with an sshpass command. For that I used an ssh_command= parameter

/etc/ssh/sshpass.10.sh

#!/bin/bash

sshpass -f /etc/ssh/sshpass.10 ssh -o HostKeyAlgorithms=ssh-dss $*

I had to use -o HostKeyAlgorithms=ssh-dss in my ssh command config, because that appliance has an old openssh server. The device is out of production and doesn't do any more updates. When I ssh to it from my updated computer, it complains about no matching algorithms:

Unable to negotiate with 10.28.0.10 port 22: no matching host key type found. Their offer: ssh-dss

So, with a regular ssh, I have to do:

 ssh -o HostKeyAlgorithms=ssh-dss root@10.28.0.10

So, I did in /etc/ssh/sshpass.10.sh ssh setup file, as I stated above.

And the last file, has an ssh root password in it on the first line of a file with a line break.
/etc/ssh/sshpass.10
i.e.:

password

I am not able to show a line break here, though and of course, this is not the password, that I am using.

The problem:

When I try to go to the path, that was configured in these files, I can get to:
/mnt/10
and root folder appears there. I try to go inside of it, I get an error:

Can't access '/mnt/10/fsshroot/': No such file or directory

Best Answer

OK, I've figured it out. I tried to directly run:

sudo sshfs root@10.28.0.10:/root /tmp/10/ -o reconnect,allow_other,follow_symlinks,ssh_command='ssh HostKeyAlgorithms=ssh-dss'

and it gave me an error:

read: Connection reset by peer

So, it didn't work. I started looking for a way to fix it and found out, that in order to do it, I have to configure 2 lines in: /etc/ssh/ssh_config

Host 10.28.0.10
    HostKeyAlgorithms=+ssh-dss

Then, I removed:

 -o HostKeyAlgorithms=ssh-dss

from: /etc/ssh/sshpass.10.sh to make it like that:

#!/bin/bash

sshpass -f /etc/ssh/sshpass.10 ssh $*

Then, after restarting autofs service, it started working. My /mnt/10/root started displaying contents.

Related Solutions

Redhat – Mount CIFS share with autofs

There should be an /etc/auto.smb already, use that, and add the following line to /etc/auto.master:

/cifs   /etc/auto.smb --timeout=60

Now all cifs shares will show up under /cifs:

ls /cifs/<server>

will show all the shares available. You might want to put some options in /etc/auto.smb to mount with specific modes. I have a auto.smb that I found out there somewhere and modified to do exactly that:

#!/bin/bash
# $Id: auto.smb,v 1.3 2005/04/05 13:02:09 raven Exp $
# This file must be executable to work! chmod 755!

key="$1"
credfile="/etc/auto.smb.$key"

opts="-fstype=cifs,file_mode=0644,dir_mode=0755,uid=eng,gid=eng"
smbclientopts=""

for P in /bin /sbin /usr/bin /usr/sbin
do
    if [ -x $P/smbclient ]
    then
        SMBCLIENT=$P/smbclient
        break
    fi
done

[ -x $SMBCLIENT ] || exit 1

if [ -e "$credfile" ]
then
    opts=$opts",credentials=$credfile"
    smbclientopts="-A "$credfile
else
    smbclientopts="-N"
fi

$SMBCLIENT $smbclientopts -gNL $key 2>/dev/null| awk -v key="$key" -v opts="$opts" -F'|' -- '
    BEGIN   { ORS=""; first=1 }
    /Disk/  {
              if (first)
                  print opts; first=0
              dir = $2
              loc = $2
              # Enclose mount dir and location in quotes
              # Double quote "$" in location as it is special
              gsub(/\$$/, "\\$", loc);
              print " \\\n\t \"/" dir "\"", "\"://" key "/" loc "\""
            }
    END     { if (!first) print "\n"; else exit 1 }
'

This will do what you want. I've used it myself.

Ubuntu – Mount SSHFS via FSTAB – Permissions Problem

After you have mounted the dir, what permissions does /home/user1/NAS-28/backup have?

Also, have you tried cutting fstab out of the equation with the sshfs command?

sshfs 192.168.120.28:/c/backup /home/user1/NAS-28/backup

That is just to make sure it isn't a problem with the mount method.

Additionally, you could try NFS-mounting to see if the problem is only when mounting over sshfs. NFS is also quite a bit faster than SSH, so if you are on a LAN and don't require the encrypted connection you are probably better off with NFS.

The problem:

Best Answer

Related Solutions

Redhat – Mount CIFS share with autofs

Ubuntu – Mount SSHFS via FSTAB – Permissions Problem

Related Topic