ssh

How to upload and download files to a server with sftp (over the SSH protocol)

December 7, 2017 by Simon 2 Comments

I have blogged about http://c9.io before and how it makes managing a remote Ubuntu server easier. Recently AWS acquired C9 and integrated it into AWS. This has triggered me to find a more open/free way to connect to my servers. I like AWS but I can tell that C9 will someday block you from talking to non-AWS servers.

C9 Aquisition

C9 on AWS: https://aws.amazon.com/cloud9/?origin=c9io

C9 Aquisition: https://c9.io/announcement

I have blogged about connecting to an AWS EC2 instance with C9 (before AWS acquired C9), The quickest way to set up a scalable development IDE and web server when I was using Digital Ocean Servers, How to buy a new domain (dedicated server from digital ocean) and add an SSL certificate from NameCheap but when I moved to Vultr serves I decided to ditch C9 and save $9 a month. I got used to setting up an SSH connection, using rmate to edit remote files locally with Sublime and SSH’ing into the box with vSSH on OSX but nothing replaced the C9 file management experience.

C9 was a good IDE (but recent price hikes and AWS purchase have made me cautious).

Uploading files without C9 to Ubuntu

Uploading files from an OSX laptop to a remote Ubuntu server is possible with the SCP command

scp ~/Desktop/FilesToUpload.zip username@www.yourserver.com /www/FilesToUpload.zip
< # Enter the remote server password

1 2	scp ~/Desktop/FilesToUpload.zip username@www.yourserver.com /www/FilesToUpload.zip < # Enter the remote server password

Server Actions (to upload the old way, with scp)

#Install Unzip (if you do not have it)
sudo apt-get install unzip

# Unzip the file
cd /www/
unzip /www/FilesToUpload.zip

#Install Unzip (if you do not have it)

sudo apt-get install unzip

# Unzip the file

cd /www/

unzip /www/FilesToUpload.zip

There has to be a better way

I have used the Forklift 3 program before (my review here) and in recent google searches, it was suggested that Forklift best SFTP program on OSX. Yay. This unix.stackexchange.com thread mentions the difference between SFTP and SSH.

Below are the steps to use SFTP in Foftlift 3 on OSX to connect to a Vultr server (you could use Digital Ocean). Ensure you have a working SSH connection setup from your server to your local OSX.

Setting up an SFTP Connection in Forklift 3

Read my Forklift 3 guide here first.

Update your Forklift to the latest version.

Add a Favorite in Forklift 3

Name the connection

In Forklift edit the connection

Specify SFTP and your servers working SSH username and password, and “/” folders

Save.

Double Click the entry to connect to your server.

To upload or download files with Forklift over SFTP, simply drag and drop.

Simple

You can now use Forklift to navigate folders, delete files, set remote file permissions all from a GUI. You can still use SSH CLI and or Sublime.

Quik Edit works too.

Nice, this gives me a convenient GUI way to upload, download and edit files instead of via CSP/SSH/CLI.

Now is there an SFTP plugin for Sublime?

More to come soon.

Donate and make this blog better

Ask a question or recommend an article

Revision History

v1.0 Initial Draft

Connect to a remote server with ssh keys generated on OSX

November 26, 2017 by Simon Leave a Comment

Below is the way I connect to a remote server via SSH keys generated on OSX.

Setting up a server

When you set up an Ubuntu server on Vultr (read my guide on setting up a Vultr server for as low as $2.5 a month) or Digital Ocean (use this link to get two months free when you setup an Ubuntu server on digital ocean) you can specify an SSH key to use for remote connections during the server create stage (old guide here).

How to create an SSH key on OSX to use to connect to a remote server

Run the following command (“sudo ssh-keygen -t rsa“) to generate an ssh key paid in “~/.ssh/” on OSX.

cd ~/.ssh/
sudo ssh-keygen -t rsa
Generating public/private rsa key pair.
Enter file in which to save the key (/var/root/.ssh/id_rsa): test.rsa            
Enter passphrase (empty for no passphrase): 
Enter same passphrase again: 
Your identification has been saved in test.rsa.
Your public key has been saved in test.rsa.pub.
The key fingerprint is:
SHA256:sJtlhWremoved2IUp8 user@192.168.0.1
The key's randomart image is (edited):
+---[RSA 2048]----+
|    .   +o=+.    |
|   . o + =.o..   |
|  . . + o *o+ .  |
|   .   E B +.=   |
|      o S = +.   |
|       O o..+ o  |
|   * . .o * .    |
|   o  ..*        |
|   ..+..         |
+----[SHA256]-----+

cd ~/.ssh/

sudo ssh-keygen -t rsa

Generating public/private rsa key pair.

Enter file in which to save the key (/var/root/.ssh/id_rsa): test.rsa

Enter passphrase (empty for no passphrase):

Enter same passphrase again:

Your identification has been saved in test.rsa.

Your public key has been saved in test.rsa.pub.

The key fingerprint is:

SHA256:sJtlhWremoved2IUp8 user@192.168.0.1

The key's randomart image is (edited):

+---[RSA 2048]----+

| . +o=+. |

| . o + =.o.. |

| . . + o *o+ . |

| . E B +.= |

| o S = +. |

| O o..+ o |

| * . .o * . |

| o ..* |

| ..+.. |

+----[SHA256]-----+

TIP: It is a good idea to also generate a passphrase to use with the key (double protection). You will be prompted to enter this password to use the RSA key.

You can now see the generated keys in ~/.ssh/

ls test* -al
total 224
drwxr-xr-x+ 29 username  staff   928 26 Nov 17:07 .
drwxr-xr-x@ 89 username  staff  2848 25 Nov 19:03 ..
...
-rw-------   1 username   staff  1766 26 Nov 17:07 test.rsa
-rw-r--r--   1 username   staff   412 26 Nov 17:07 test.rsa.pub
...

ls test* -al

total 224

drwxr-xr-x+ 29 username staff 928 26 Nov 17:07 .

drwxr-xr-x@ 89 username staff 2848 25 Nov 19:03 ..

...

-rw------- 1 username staff 1766 26 Nov 17:07 test.rsa

-rw-r--r-- 1 username staff 412 26 Nov 17:07 test.rsa.pub

...

You can view the contents of the public file (you can use this when generating Digital Ocean, Vultr, AWS or Azure or other cloud servers).

fyi: Replace 123.123.123.123 with your remote serves ip.

sudo cat /~.ssh/test.rsa.pub
ssh-rsa AAAAB3NzaC...removed...1RL5hCG0lUn 123.123.123.123

1 2	sudo cat /~.ssh/test.rsa.pub ssh-rsa AAAAB3NzaC...removed...1RL5hCG0lUn 123.123.123.123

How to connect to a server (the old way).

As long as your host added the desired public ssh key file contents to the server (adding the public ssh key contents to “~/.ssh/authorized_keys” you will be able to connect to the server.

Run the following command on OSX command line to connect to the server via SSH.

sudo ssh -i ~/.ssh/test.rsa remoteuser@123.123.123.123

1	sudo ssh -i ~/.ssh/test.rsa remoteuser@123.123.123.123

You should see..

Enter passphrase for key '/Users/username/.ssh/test.rsa': 
> PASSPHRASECREATEDEARLIER
Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-101-generic x86_64)

 * Documentation:  https://help.ubuntu.com
 * Management:     https://landscape.canonical.com
 * Support:        https://ubuntu.com/advantage

  Get cloud support with Ubuntu Advantage Cloud Guest:
    http://www.ubuntu.com/business/services/cloud

0 packages can be updated.
0 updates are security updates.

Last login: Sun Nov 26 08:47:20 2017 from 123.123.123.123

remoteuser@yourserver:~# ls -al
total 32
drwx------  5 remoteuser remoteuser 4096 Nov 25 12:07 .
drwxr-xr-x 24 remoteuser remoteuser 4096 Nov 25 12:15 ..
-rw-------  1 remoteuser remoteuser 1813 Nov 26 08:57 .bash_history
-rw-r--r--  1 remoteuser remoteuser 3106 Oct 22  2015 .bashrc
...

Enter passphrase for key '/Users/username/.ssh/test.rsa':

> PASSPHRASECREATEDEARLIER

Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-101-generic x86_64)

* Documentation: https://help.ubuntu.com

* Management: https://landscape.canonical.com

* Support: https://ubuntu.com/advantage

Get cloud support with Ubuntu Advantage Cloud Guest:

http://www.ubuntu.com/business/services/cloud

0 packages can be updated.

0 updates are security updates.

Last login: Sun Nov 26 08:47:20 2017 from 123.123.123.123

remoteuser@yourserver:~# ls -al

total 32

drwx------ 5 remoteuser remoteuser 4096 Nov 25 12:07 .

drwxr-xr-x 24 remoteuser remoteuser 4096 Nov 25 12:15 ..

-rw------- 1 remoteuser remoteuser 1813 Nov 26 08:57 .bash_history

-rw-r--r-- 1 remoteuser remoteuser 3106 Oct 22 2015 .bashrc

...

Congratulations, you should now be able to connect to your server via SSH.

Securing your ubuntu Server

Read my guides here, here and here.

Don’t forget to add a firewall and set up an SSL certificate.

How to connect to a server (faster way).

todo: ~/.ssh/config method

Now we can connect to your remote server with the shorter method.

todo: ~/.ssh/config method

Donate and make this blog better

Ask a question or recommend an article

Revision History

v1.0 Initial Post

etc

How to use Sublime Text editor locally to edit code files on a remote server via SSH

September 16, 2017 by Simon 1 Comment

This guide will show you how to use Sublime Text editor locally to edit code files on a remote server via SSH.

This guide assumes oy already have a working SSH connection between your Mac and your remote server (with no firewall issues) and have configured SSH keys via modifying to authorized_keys file to enable SSH access.

Need a server?

Set up a Server on Vultr here for as low as $2.5 a month or set up a Server on Digital Ocean (and get the first 2 months free ($5/m server)). I have a guide on setting up a Vultr server here or Digital Ocean server here. Don’t forget to add a free LetsEncrypt SSL Certificate and secure the server (read more here and here).

Setting up your local machine

Open Sublime Text 3 and press COMMAND+SHIFT+P to bring up the command bar and type Install and click Package Control: Install Package and click it.

Wait a few seconds for the packages list to show and type “rsub”

Ok let’s make an SSH alias to your server on your Mac by typing “sudo nano ~/.ssh/config”

Make these changes

File contents:

host mysrv
HostName www.myserver.com
User thesshuser
RemoteForward 52698 localhost:52698

host mysrv

HostName www.myserver.com

User thesshuser

RemoteForward 52698 localhost:52698

Now we can connect to the server via SSH by typing “ssh mysrv”

After typing the server’s password you will be connected to the ssh server

ssh mysrv
thesshuser@www.myserver.com's password: 
Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-87-generic x86_64)

 * Documentation:  https://help.ubuntu.com
 * Management:     https://landscape.canonical.com
 * Support:        https://ubuntu.com/advantage

0 packages can be updated.
0 updates are security updates.


You have new mail.
Last login: Sat Sep 16 12:51:35 2017 from xx.xx.xx.xx
thesshuser@myserver:~#

ssh mysrv

thesshuser@www.myserver.com's password:

Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-87-generic x86_64)

* Documentation: https://help.ubuntu.com

* Management: https://landscape.canonical.com

* Support: https://ubuntu.com/advantage

0 packages can be updated.

0 updates are security updates.

You have new mail.

Last login: Sat Sep 16 12:51:35 2017 from xx.xx.xx.xx

thesshuser@myserver:~#

Now on your local Mac load the following page in a web browser (and review the code): https://raw.github.com/aurora/rmate/master/rmate and copy the contents to the clipboard.

On the remote server (the SSH one) type:

sudo nano /usr/local/bin/rmate

1	sudo nano /usr/local/bin/rmate

Now paste the contents or this page into nano editor and save it and exit nano.

Now run this chmod command to make the rmate file executable.

sudo chmod a+x /usr/local/bin/rmate

1	sudo chmod a+x /usr/local/bin/rmate

Now on the server, we can open any text file with rmate and have it open locally in Sublime via SSH. Yes, Open a file on a server and have it automatically open in locally 🙂

If you have many files to open then create a bash file to open files with rmate

sudo nano openfilesonmac.sh

1	sudo nano openfilesonmac.sh

Contents:

#!/bin/bash

rmate index.html 
rmate index1.html 
rmate index2.html 
rmate index3.html 
rmate index4.html 
rmate index5.html 
rmate index6.html 
rmate index7.html 
rmate index8.html 
rmate index9.html 
rmate index10.html

#!/bin/bash

rmate index.html

rmate index1.html

rmate index2.html

rmate index3.html

rmate index4.html

rmate index5.html

rmate index6.html

rmate index7.html

rmate index8.html

rmate index9.html

rmate index10.html

File permissions:

chmod +x openfilesonmac.sh

1	chmod +x openfilesonmac.sh

Now we can open may remote files locally by running the bash script.

All saves in Sublime locally are sent to the server 🙂

e.g

rmate /www/index.html
rmate /node/api/app01/app.js
rmate /www/dashboard/index.php

rmate /www/index.html

rmate /node/api/app01/app.js

rmate /www/dashboard/index.php

Still here, read more articles here or use the form below to ask a question or recommend an article.

Port Forwarding with vSSH on OSX

If you use a third party ssh program like vSSH you will also need to setup port forwarding to avoid this error

rmate test.txt
/usr/local/bin/rmate: connect: Connection refused
/usr/local/bin/rmate: line 384: /dev/tcp/localhost/52698: Connection refused
Unable to connect to TextMate on localhost:52698

rmate test.txt

/usr/local/bin/rmate: connect: Connection refused

/usr/local/bin/rmate: line 384: /dev/tcp/localhost/52698: Connection refused

Unable to connect to TextMate on localhost:52698

How.

Now you can open remote files locally with SSH or vSSH too.

Donate and make this blog better

Ask a question or recommend an article

v1.3 vSSH Port forwarding.

Connecting to an AWS EC2 Ubuntu instance with Cloud 9 IDE as user ubuntu and root

September 1, 2016 by Simon Fearby 5 Comments

Recently I setup and Amazon EC2 Ubuntu Server instance and wanted to connect it to the awesome Cloud 9 IDE. I was sick of interacting with a server through terminal windows.

Use this link and get $19 free credit with Cloud 9: https://c9.io/c/DLtakOtNcba

Cloud 9 IDE (sample screenshot)

Previously I was using Digital Ocean (my Digital Ocean setup guide here) and this was simple, you get a VM and you have a root account and you do what you want. Amazon AWS however, have extra layers of security that prevent logging in as root via SSH and that can be a pain with Cloud 9 as your workspace tree is restricted to the ~/ (home) folder.

Below are the steps you need to connect to an AWS instance with user “ubuntu” and “root” with Cloud 9.

Connecting to an AWS instance with Cloud 9 as user “ubuntu”

1. Purchase and set-up your AWS instance (my guide here).

2. You need to be able to login to your AWS server from a terminal prompt (from OSX). This may include opening port 22 the AWS Security Group panel. Info on SSH logins here.

ssh -i ~/.ssh/yourawsicskeypair.pem ubuntu@ec2-xx-xx-xxx-xxx.ap-southeast-2.compute.amazonaws.com

1	ssh -i ~/.ssh/yourawsicskeypair.pem ubuntu@ec2-xx-xx-xxx-xxx.ap-southeast-2.compute.amazonaws.com

3. On your AWS server (from step 2) Install NodeJS.

You will know node is installed if you get a version returned when typing the following bash command.

node -v

node -v

tip: If node is not installed you can run the Cloud 9 pre-requisites script (that includes node).

curl -L https://raw.githubusercontent.com/c9/install/master/install.sh | bash

1	curl -L https://raw.githubusercontent.com/c9/install/master/install.sh \| bash

4. Ensure you have created SSH key on Cloud 9 (guide here).

5. Copy your Cloud 9 SSH key to the clipboard.

6. On your AWS server (in step 2) edit the ~/.ssh/authorized_keys file and paste in the Cloud 9 SSH key (after you AWS key pair that was added from the setup of AWS) to a new line and save the file.

7. Log in to Cloud 9 and click create Workspace then Remote SSH Workspace.

Name your workspace (all lowercase and no spaces).
Username: ubuntu
Hostname: Add your AWS ec2 server hostname.
Initial Path: This has to be ~/

8. Click Create Workspace

9. If all goes well you will have a prompt to install the prerequisites.

If this fails check out the Cloud 9 guide here.

Troubleshooting: I had errors like “Project directory does not exist or is not writable and “Unable to change File System Path in SSH Workspace” because I was trying to set the workspace path as “/” (this is not possible on AWS with the “ubuntu” account.

10. Now you should have a web-based IDE that allows you to browse your server, create and edit files, run termials instances that will reconnect if your net connection or browser tab drops out (you can even go to a different machine and continue with your session).

Connecting to an AWS instance with Cloud 9 as user “root

Connecting to your server as the “ubuntu” server is fine if you just need to work in your “ubuntu” home folder. As soon as you want to start changing other settings outside of your home folder you are stuck. Granting “ubuntu” higher privileges server wide is a bad idea so here is how you can enable “root” login via SSH access.

WARNING: Logging in as ROOT IS BAD, you should only allow Root Login for short periods and it is advisable to remove root login abilities as soon as you do not need them or in production.

Having root access while developing or building a new server saves me bucket loads of time so lets allow it.

1. Follow step 1 to 5 in the steps above (setup AWS, ssh access via terminal, install node, create cloud 9 ssh key, copy the cloud 9 ssh key to the clipboard).

2. SSH to your AWS server and edit the following file:

sudo nano /etc/ssh/sshd_config
# -- Make the following changes
# PermitRootLogin without-password
PermitRootLogin = yes

sudo nano /etc/ssh/sshd_config

# -- Make the following changes

# PermitRootLogin without-password

PermitRootLogin = yes

Save.

3. Backup your root authorised keys file

sudo cp /root/.ssh/authorized_keys /root/.ssh/authorized_keys.bak

1	sudo cp /root/.ssh/authorized_keys /root/.ssh/authorized_keys.bak

4. Edit the root authorized_keys file and paste in your Cloud 9 SSH Key.

5. Now you can create a Cloud 9 Connection to your server with root

Name your workspace (all lowercase and no spaces).
Username: root
Hostname: Add your AWS ec2 server hostname.
Initial Path: This has to be /

tip: If you have not added you SSH key correctly you will receive this error when connecting.

6. You should now be able to connect to AWS ec2 instances with Cloud 9 as root and configure/do anything you want without switching to shell windows.

Security

As a precaution, do check your website often in https://www.shodan.io and see if it has open software or is known to hackers.
Enjoy

If this guide has helped please consider donating a few dollars.

Donate and make this blog better

Ask a question or recommend an article

V1.6 security

Development Blog

Coding for fun since 1996, Learn by doing and sharing.

ssh

How to upload and download files to a server with sftp (over the SSH protocol)

Connect to a remote server with ssh keys generated on OSX

How to use Sublime Text editor locally to edit code files on a remote server via SSH

Connecting to an AWS EC2 Ubuntu instance with Cloud 9 IDE as user ubuntu and root

Popular

Security

Code

Tech

Wordpress

General

Main navigation

ssh

Footer

Popular

Security

Code

Tech

Wordpress

General