<br><tt><font size=2>freenx-knx-bounces@kde.org wrote on 08/05/2012 16:47:36:</font></tt>
<br>
<br><tt><font size=2>> Sorry for leaving out details. That was
sloppy of me.</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> I am on CentOS 5.8 (32-bit PAE) and I followed
the instructions here:</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> </font></tt><a href=http://wiki.centos.org/HowTos/FreeNX><tt><font size=2>http://wiki.centos.org/HowTos/FreeNX</font></tt></a>
<br>
<br>
<br><tt><font size=2>PASSDB</font></tt>
<br>
<br><tt><font size=2>Oh yes, that does use</font></tt>
<br>
<br><tt><font size=2> /etc/nxserver/users.id_dsa
</font></tt>
<br>
<br><tt><font size=2>to connect ordinary users via ssh localhost instead
of</font></tt>
<br><tt><font size=2>using password.</font></tt>
<br>
<br><tt><font size=2>The code just runs it as a default when</font></tt>
<br>
<br><tt><font size=2> $LOGIN_METHOD
= PASSDB </font></tt>
<br>
<br><tt><font size=2>so I hadn't correctly worked out how it came to be
executed</font></tt>
<br><tt><font size=2>(and I've never bothered with it)</font></tt>
<br>
<br><tt><font size=2>The code is a bit complicated.</font></tt>
<br>
<br>
<br><tt><font size=2>But</font></tt>
<br><tt><font size=2>the "nx" user which sets up the ssh "tunnel"
needs </font></tt>
<br>
<br><tt><font size=2> /var/lib/nxserver/home/.ssh/client.id_dsa.key</font></tt>
<br>
<br><tt><font size=2>in nxclient.</font></tt>
<br>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> It makes no mention of "nxsetup --install"</font></tt>
<br>
<br>
<br>
<br><tt><font size=2>The date on the HTML is:-</font></tt>
<br>
<br><tt><font size=2>"HowTos/FreeNX (last edited 2012-05-02 13:10:54</font></tt>
<br><tt><font size=2> by <span
title="christophgaluschka @ misterx.tiwag.at"</font></tt>
<br>
<br><tt><font size=2>but there is stuff from 2006 still in there.</font></tt>
<br>
<br><tt><font size=2>Look at :-</font></tt>
<br>
<br><a href="https://www.centos.org/modules/newbb/viewtopic.php?topic_id=32959"><tt><font size=2>https://www.centos.org/modules/newbb/viewtopic.php?topic_id=32959</font></tt></a>
<br>
<br><tt><font size=2>This show nxsetup --install being run</font></tt>
<br>
<br><tt><font size=2>And look here :-</font></tt>
<br>
<br><a href="http://www.kernelhardware.org/how-to-setup-freenx/"><tt><font size=2>http://www.kernelhardware.org/how-to-setup-freenx/</font></tt></a>
<br>
<br>
<br><tt><font size=2>This says the key is in</font></tt>
<br>
<br><tt><font size=2> /var/lib/nxserver/home/.ssh/client.id_dsa.key</font></tt>
<br>
<br><tt><font size=2>on centos</font></tt>
<br>
<br>
<br>
<br><tt><font size=2>QUOTE</font></tt>
<br>
<br><tt><font size=2>freeNX SSH Keys configuration:</font></tt>
<br>
<br><tt><font size=2>In order for freeNX to function securely we need to
copy the ssh key from the remote server system to the local machines NoMachine
client software.</font></tt>
<br>
<br><tt><font size=2>On the remote server system copy the client.id_dsa.key
contents (including the —BEGIN— and —- END— lines):</font></tt>
<br>
<br><tt><font size=2># cat /var/lib/nxserver/home/.ssh/client.id_dsa.key</font></tt>
<br>
<br><tt><font size=2>UNQUOTE</font></tt>
<br>
<br>
<br>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> I do not mind copying the key out to clients,
I was just trying to </font></tt>
<br><tt><font size=2>> clarify if the key was global.</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> I *think* the RPM generates a new key because
the instructions say this:</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> " In the advanced dialog window under the
General Tab, you should </font></tt>
<br><tt><font size=2>> see the items you have already entered and a
Key... button. You will</font></tt>
<br><tt><font size=2>> need to ssh into the server which you are trying
to connect and go </font></tt>
<br><tt><font size=2>> to the /etc/nxserver/ directory and open the
file client.id_dsa.key </font></tt>
<br><tt><font size=2>> (you must be the root user to open this file).
Copy all the text </font></tt>
<br><tt><font size=2>> (including the BEGIN DSA PRIVATE KEY and END
DSA PRIVATE KEY lines. </font></tt>
<br><tt><font size=2>> Press the Key... button, delete the text that
is in there, and paste</font></tt>
<br><tt><font size=2>> the client.id_dsa.key information from the server
into the Key </font></tt>
<br><tt><font size=2>> Management text box, then select Save."</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> Which makes me think the GUI is copying the key
to some version of </font></tt>
<br><tt><font size=2>> "/var/lib/nxserver/home/.ssh/client.id_dsa.key"</font></tt>
<br><tt><font size=2>> Am I off base here?</font></tt>
<br>
<br>
<br><tt><font size=2>Even if you run the client on the server it won't
touch the</font></tt>
<br>
<br><tt><font size=2> /var/lib/nxserver/home/.ssh/client.id_dsa.key</font></tt>
<br>
<br><tt><font size=2>file . . .</font></tt>
<br>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> To simplify things, I can just run "nxsetup
--install" and force a </font></tt>
<br><tt><font size=2>> new key to be used even after install, right?</font></tt>
<br>
<br><tt><font size=2>A couple of people subscribed to this list use centos,
so</font></tt>
<br><tt><font size=2>they may chip in.</font></tt>
<br>
<br><tt><font size=2>I don't know if they use PASSDB or ssh + ssh password</font></tt>
<br>
<br>
<br>
<br>
<br><tt><font size=2>Have you installed it ?? what's do</font></tt>
<br>
<br><tt><font size=2> ls -la /etc/nxserver/</font></tt>
<br><tt><font size=2>&</font></tt>
<br><tt><font size=2> ls -la /var/lib/nxserver/home/.ssh/</font></tt>
<br><tt><font size=2>list.</font></tt>
<br>
<br><tt><font size=2>That would be a good start.</font></tt>
<br>
<br>
<br>
<br>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> Thanks for your help.</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> Dave</font></tt>
<br><tt><font size=2>> </font></tt>
<br><tt><font size=2>> </font></tt>